See What Systemd 223 Brings New

As you may know, systemd is the most popular service init manager, being recently adopted on Ubuntu and Debian system as well.

The latest version available is systemd 223, released a few days ago, bringing improvements:

  • The python-systemd code has been removed from the systemd repository. A new repository has been created which accommodates the code from now on, and we kindly ask distributions to create a separate package for this:
  • The systemd daemon will now reload its main configuration (/etc/systemd/system.conf) on daemon-reload.
  • systemd-networkd gained a number of new configuration options.
  • A new boolean configuration option for TAP devices called ‘VNetHeader=’. If set, the IFF_VNET_HDR flag is set for the device, thus allowing to send and receive GSO packets.
  • A new tunnel configuration option called ‘CopyDSCP=’. If enabled, the DSCP field of ip6 tunnels is copied into the decapsulated packet.
  • A set of boolean bridge configuration options were added. ‘UseBPDU=’, ‘HairPin=’, ‘FastLeave=’, ‘AllowPortToBeRoot=’, and ‘UnicastFlood=’ are now parsed by networkd and applied to the respective bridge link device via the respective IFLA_BRPORT_* netlink attribute.
  • A new string configuration option to override the hostname sent to a DHCP server, called ‘Hostname=’. If set and ‘SendHostname=’ is true, networkd will use the configured hostname instead of the system hostname when sending DHCP requests.
  • A new tunnel configuration option called ‘IPv6FlowLabel=’. If set, networkd will configure the IPv6 flow-label of the tunnel device according to RFC2460.
  • The ‘macvtap’ virtual network devices are now supported, similar to the already supported ‘macvlan’ devices.
  • systemd-resolved now implements RFC5452 to improve resilience against cache poisoning. Additionally, source port randomization is enabled by default to further protect against DNS spoofing attacks.
  • nss-mymachines now supports translating UIDs and GIDs of running containers with user-namespaces enabled. If a container ‘foo’ translates a host uid ‘UID’ to the container uid ‘TUID’, then nss-mymachines will also map uid ‘UID’ to/from username ‘vu-foo-TUID’ (with ‘foo’ and ‘TUID’ replaced accordingly). Similarly, groups are mapped as ‘vg-foo-TGID’.

Speaking of Systemd, Lennart Poettering, the systemd creator, has announced that between November 5 and 7, a Systemd Conference will take part in Berlin where systemd developers, Linux distribution packagers and other Linux hackers will attend workshops

Tagged with: , ,
Posted in The Linux and Unix Articles!

Leave a Reply

Your email address will not be published. Required fields are marked *




Subscribe to get the latest Linux news and how to guides directly on your e-mail!