On Wed, Mar 6, 2024 at 8:41 AM Shreenidhi Shedi
wrote:
>
> Hi All,
>
> What is the rationale behind using sshd.socket other than not keeping sshd
> daemon running always and reducing memory consumption?
Neither is provided by systemd, so I guess this question is better
addressed to the project
Hi All,
What is the rationale behind using sshd.socket other than not keeping sshd
daemon running always and reducing memory consumption?
With sshd.socket, systemd does a fork/exec on each connection which is
expensive and with the sshd.service approach server will just connect with
the client
I found the answer in the source code (it reuses secure boot key) and submitted
a PR to clarify the manpage: https://github.com/systemd/mkosi/pull/2464
Thank you,
Aaron VerDow
From: VerDow, Aaron
Sent: Tuesday, March 5, 2024 10:58:15 AM
To:
I'm looking for a bit of clarification on how to define within mkosi the
private key used by SignExpectedPcr. The mkosi manpage mentions a few keys but
I'm not sure which one is used (or which other options are required) for the
PCR signature specifically.
Thank you,
Aaron VerDow
Hi, I am not sure if setting the compile time defaults is possible but in
general distributions should ship their configuration in /usr/... and end
users should make their adjustments in /etc/...
On Tue, Mar 5, 2024, 12:30 Max Gautier wrote:
> Hi,
>
> journald.conf (as well as other components)
Hi,
journald.conf (as well as other components) in the systemd source tree
has the following mention (emphasis mine):
# **Entries in this file show the compile time defaults**. Local configuration
# should be created by either modifying this file (or a copy of it placed in
# /etc/ if the
Thank you for your answer. Sorry for my late reaction. I've been ill
for some weeks.
You say that starting a new namespace might have problems with
multithreaded programs (and which program isn't??). Can you explain
why and where the problem occurs? Maybe a link with some context. Much