Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

This is why Linux firewall is terrible at blocking systemd’s access to a network port.

Yeah, I had a corner case where I wanted to use ISC DHCP client (due to Juniper DHCP server at my ISP) where I wanted to block all network access to systemd.

Alas, no can do. So i’ve since moved over to Denuvan distro where SysV unit can still be used while having Debian APT repo.

This is a plus for OpenBSD which can firewall by-PID (PID 1, systemd).



Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: