Many of systemd's tools have a --image= switch that tells them to operate on a DDI rather than directly on the file system.
In my personal view, I am pretty sure an OS (specifically: all the code and immutable vendor shipped resources) should be composed entirely from DDIs, because they bring a very high security level (i.e. every single read is validated when it is made), but are nicely composable, …
Lennart Poettering /
npub1rk…qzenj
2024-05-01 06:03:41
in reply to nevent1q…tw26
Author Public Key
npub1rk2uxtv6nk262nucavh259t085a8rhzfaj3vjc9jhzvkyav0rnqqxqzenjPublished at
2024-05-01 06:03:41Event JSON
{
"id": "d5eeb66fa114c71f99a4c97ee9e2140b36ed7b27d49e9b8d2cff398a536ba921",
"pubkey": "1d95c32d9a9d95a54f98eb2eaa156f3d3a71dc49eca2c960b2b89962758f1cc0",
"created_at": 1714543421,
"kind": 1,
"tags": [
[
"e",
"19044b13cb37760fea7efa2754609f1189fe947572935fdce081c41e06d1dff8",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://mastodon.social/users/pid_eins/statuses/112364317696699890",
"activitypub"
]
],
"content": "Many of systemd's tools have a --image= switch that tells them to operate on a DDI rather than directly on the file system.\n\nIn my personal view, I am pretty sure an OS (specifically: all the code and immutable vendor shipped resources) should be composed entirely from DDIs, because they bring a very high security level (i.e. every single read is validated when it is made), but are nicely composable, …",
"sig": "f11cb397738c5cfabfb5cde256289d352420df7cbb549894541d6130c995dee0dae9a49d38a32ade57128e42732de510398d08b5582e0cc36d74b127bbfb0ca6"
}