LUP 567: So Long sudo

• Air Date: 2024-06-16
• Duration: 91 mins 41 secs

About this episode

Your Linux box is a-changin'. systemd has a huge new release; we'll get into the most impressive features, including the new sudo replacement. Plus, our thoughts on the new Linux Arm laptops that are just around the corner.

Your hosts

• Chris Fisher
• Wes Payne
• Brent Gervais

Sponsored by

• Core Contributor Membership: Take $1 a month of your membership for a lifetime!
• Tailscale: Tailscale is a programmable networking software that is private and secure by default - get it free on up to 100 devices!
• 1Password Extended Access Management: 1Password Extended Access Management is a device trust solution for companies with Okta, and they ensure that if a device isn't trusted and secure, it can't log into your cloud apps.

Episode links

• 💥 Gets Sats Quick and Easy with Strike
• 📻 LINUX Unplugged on Fountain.FM
• Announcing systemd v256 — In the weeks leading up to this release I have posted a series of serieses of posts to Mastodon about key new features in this release.
• systemd changes with v2⁸:
• systemd 256 Released With run0, systemd-vpick, importctl & Other New Features
• Lennart on systemd-vpick — Basically, you can now place multiple versions of the same resource in some dir of your choice, suffix that dir's name with .v/ and the you get some basic version management in place: delete or add new versions by just removing/adding new files, and the tools will find the newest item dropped in automatically.
• Introduction to Portable Services — “Portable services” do not provide a fully isolated environment to the payload, like containers mostly intend to. Instead, they are more like regular system services, can be controlled with the same tools, are exposed the same way in all infrastructure, and so on. The main difference is that they use a different root directory than the rest of the system.
• Trying out systemd's Portable Services — All in all, the core pieces are already in place for a very promising new technology that should make it easier for 3rd parties to provide Linux system-level software in a safe and convenient way, well done to the systemd team for a well executed concept. All it lacks is some polish around the tooling and integration.
• systemd sleep — Putting a PC to sleep is complicated business and there are different mechanisms available to achieve this on Linux.
• Lennart on SSH and AF_VSOCK — This automatic ssh-via-AF_VSOCK logic is particularly useful
• DDIs and systemd-nspawn — Or in other words: there's now unprivileged systemd-npsawn containers. Yay!
• Lennart on systemd-vmspawn
• Lennart on sd_notify
• Lennart on dlopen
• Lennart on run0 — There's a new tool in systemd, called run0. Or actually, it's not a new tool, it's actually the long existing tool systemd-run, but when invoked under the run0 name (via a symlink) it behaves a lot like a sudo clone. But with one key difference: it's not in fact SUID.
• doas - dedicated openbsd application subexecutor
• Doas - NixOS Wiki
• Doas on Wikipedia
• The Tragedy of systemd — Join me on a journey through the bootstrap process, the history of init, the reasons why change can be scary, and the discovery of a part of your OS you may not even know existed.
• The Two Year Journey Funded By Arm/Qualcomm For Improving ARM Linux Laptop Support — ARM Kernel developers spent the last two years working on improving ARM Linux laptop support with a focus on the Lenovo ThinkPad X13s powered by a Qualcomm SoC.
• Ubuntu 24.04 LTS support to the Lenovo ThinkPad x13s
• Snapdragon 8cx
• Ubuntu Asahi project
• TUXEDO Working on Snapdragon X Elite Linux Laptop
• Membership Summer Discount — Take $1 a month of your membership for a lifetime!
• Spokane Meetup, Sat, Jul 13, 2024, 4:00 PM
• Berlin with Brent: September Meetup @ Nextcloud Conference, Fri, Sep 13, 2024 | Meetup
• A Nix Flake for Bitfocus Companion
• ChrisLAS' Beelink NixOS Config
• Bluetooth - NixOS Wiki
• nix-direnv
• xscreensaver on Android
• Rainier cherry - Wikipedia
• Pick: Iotas — Markdown notes that syncs with NextCloud Notes.

Tags

256, arm, beelink, berlin meetup, berlin with brent, bitfocus companion, cgroups, doas, father's day, homed-managed, importctl, iotas, ipod, jupiter broadcasting, lenovo thinkpad x13s, liblzma, linux arm, linux podcast, linux unplugged, nextcloud conference, nextcloud notes, nix drinking game, nix-darwin, nix-direnv, norwich meetup, ntp challenge, omakub, portable service, qualcomm, rockbox os, run0, snapdragon, spokane meetup, squid, ssh, sudo, suid, system v, systemd, systemd sleep, systemd-nspawn, systemd-run0, systemd-vmspawn, systemd-vpick, the tragedy of systemd, ubuntu, v2⁸, xscreensaver for android, xz