Photo by Ian Taylor on Unsplash
Create secure simple containers with the systemd tools Nspawnd and Portabled
Isolation Ward
The debate surrounding systemd, originally launched with the simple goal of replacing the ancient SysVinit scripts in most Linux distributions with a contemporary solution, has caused even venerable projects like Debian GNU/Linux to split into a pro-systemd faction (Debian) and an anti-systemd faction (Devuan).
However you look at it, though, success has proved systemd originator Lennart Poettering right. No major distribution today would seriously consider replacing systemd with another solution. The init system's relevance is dwindling in any case in the age of containerized applications. If MariaDB is just a container you need to launch, then the init system hardly needs to perform any magic.
If you follow Red Hat, SUSE, and its offspring, clearly containers is where the journey is headed (see the "Container Advantages" box). A container-first principle now applies to all enterprise distributions, with the exception of Debian. Systemd has a few aces up its sleeve that most admins don't even know about – not least because of the sometimes almost hysterical controversies surrounding the product.
Container Advantages
From the point of view of both vendors and software producers, containers are convenient, with the distribution only having to provide a few components: a kernel and a runtime environment. The software provider, in turn, also only needs one container in their portfolio because it runs on basically every system with a functional container runtime. Where Red Hat and its associated distros used to have to maintain different versions of MariaDB, PostgreSQL, and practically all the relevant tools for their own distributions, today they only provide a shell and a kernel. The provider of the software itself steps into the breach and offers precisely one container that runs everywhere. Brave new world – and so elegant.
As
Buy this article as PDF
(incl. VAT)
Buy ADMIN Magazine
Related content
-
Integrating Podman and systemd
With the integration of Podman and systemd, you can put any software inside a container under the control of systemd and see almost no difference between running the service directly on the host or inside a container.
-
Simplify your migration from Docker to Podman
Podman has become an attractive alternative to Docker, not least because it does not require a central daemon. In this article, we look at how to set about changing the guard and how you can use Podman Desktop to do so.
-
Run rootless Podman containers as systemd services
Running rootless containers is easy with Podman. With Podman Quadlet files, these containers are seamlessly integrated into systemd services.
-
The achievements of and plans for systemd
We talked to systemd maintainer Lennart Poettering about the sense and purpose of some systemd features.
-
Systemd network management and container handling
Version 219 of the controversial systemd init system introduces a number of comprehensive changes. We take a closer look at the innovations in network management and container handling.
Subscribe to our ADMIN Newsletters
Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
(追記) (追記ここまで)
Most Popular
Support Our Work
ADMIN content is made possible with support from readers like you. Please consider contributing when you've found an article to be beneficial.