SELinux vs Systemd: What's Safer for Linux Servers?
Among the most disruptive changes in Linux over the last decade has been in the introduction and broad integration of the systemd init system into Linux.
In a keynote session at the CoreOS Fest in Berlin this week, Lennart Poettering, one of the lead developers of systemd, delivered a detailed technical keynote on some of the key parameters in systemd and how they can be used to secure Linux servers.
Poettering also provided some very controversial comments on how systemd stacks up against SELinux for helping to secure Linux servers. The fundamental premise of systemd is that it can be used to essentially sandbox everything on a Linux system, not just containers but normal system services as well.