Jul 29, 2020

Systemd-homed is intrusive, glitchy and problematic, it is also not ready yet

Since last few years, there has been a lot of discussion ongoing about the latest incumbent candidate in the systemd family of services called homed. It was supposed to revolutionize the home directory on linux systems and also the way users are managed.


While I have my own reservations about the viability of this revolutionary approach, it also has some real and practical issues to deal with:

1. LUKS encryption is mandatory with homed. How is this supposed to work on old machines which will be too slow to encrypt by modern standards? One of the popular use cases of Linux has been making old machines work. Also, how will the less powerful Android devices work with this encryption once this functionality is ported to Android world?

2. SSH Connectivity. One of the obvious side effects of LUKS encryption (as this how-to-geek article has noticed) is that no user can connect through SSH/SFTP service remotely once that user logs off from the machine because all the ssh configuration will be encrypted along with the user's home directory. This is an obvious glitch and no solution has been offered till date.

3. Good bye, backwards compatibility. This approach totally changes how the user authentication takes place and directories are structured (/home is mounted from a separate loopback device in /home/$user.homedir for ex). This is obviously going to break compatibility for a lot of apps and will also need lots of testing and experiment to ensure that it works reliably. This seems like a lot of wasted efforts for little or zero gains.

Despite these obvious hiccups, distros like Ubuntu and Arch have lapped up systemd-homed and hurriedly included in their latest versions (the former even did it for the LTS version 20.04 which is much too worrying). Sometimes, it seems like some distros actively try to ruin the stability and predictability of their users' machines and eternally keep them in “beta testing“ mode.



No comments:

Post a Comment