Lennart Poettering on Nostr: DDIs are supposed to carry dm-verity authentication information, i.e. every single ...
DDIs are supposed to carry dm-verity authentication information, i.e. every single access to them is typically cryptographically protected, and linked back to a set of signing keys maintained by the system (ideally in the kernel keyring). systemd uses DDIs for the system itself, for systemd-nspawn containers, for systemd portable services, for systemd-sysext system extensions, for systemd-confext configuration extensions and more.
Published at
2024-05-01 06:03:17Event JSON
{
"id": "19044b13cb37760fea7efa2754609f1189fe947572935fdce081c41e06d1dff8",
"pubkey": "1d95c32d9a9d95a54f98eb2eaa156f3d3a71dc49eca2c960b2b89962758f1cc0",
"created_at": 1714543397,
"kind": 1,
"tags": [
[
"e",
"cdf032da9ec8ef606d85ceff693d8b07ac16010a9816469445e74fe0f82c203e",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://mastodon.social/users/pid_eins/statuses/112364316104712067",
"activitypub"
]
],
"content": "DDIs are supposed to carry dm-verity authentication information, i.e. every single access to them is typically cryptographically protected, and linked back to a set of signing keys maintained by the system (ideally in the kernel keyring). systemd uses DDIs for the system itself, for systemd-nspawn containers, for systemd portable services, for systemd-sysext system extensions, for systemd-confext configuration extensions and more.",
"sig": "a1dc5a9ce0ea9956759e6d1f9538ba76cd8e20aeb5ba8bcb82b33f52ccd9b5761788b55b3e03ba24b79ba99fd9d5f70193a79f3145f20883a6b6697e7d6b1487"
}