Child porn in systemd journal? Yes, we can.

Not yet discussed threat of systemd journal
There already has been a lot of discussion and flamewar about systemd. I’m not going to flame in this post. I’m going to show you one of the possible threats of using systemd that has not been discussed anywhere so far.
The problem is child porn and it’s storing in systemd journal. If you want to read more about this problem, just keep reading. Systemd journal uses structured binary log files to store logs. These are to be read via journalctl utility. Journalctl utility by default shows only a finite subset of all fields that has been logged to journal. Hence it’s not showing anything else, so it’s quite easy to store some malicious content, e.g. child pornography, malware or extremist material there without being noticed.
I’m not sure whether this is on purpose or if someone just wasn’t able to see all consequences this can have. In both cases, this problem is something that in my opinion should be discussed in public.
Continue reading