- add a job mode which shuts everything down but what is requested
-- write log subsystem/log output logic for daemons
-
- implement priv dropping
- allow to disable priv dropping for hook scripts from fragment
- verify fragment data after loading: refuse cycles on yourself, service units contradicting, more than one Start executable, ...
-- rate limit startups
-
- automatically delete stale unix sockets
- .socket needs to be notified not only by .service state changes, but also unsuccessful start jobs
+
+- we probably cannot use glibc's syslog() for logging, since it
+ presumably uses the logging socket in blocking mode which might
+ trigger a deadlock if syslog does not process the socket anymore
+ (maybe because it is restarted) and the socket buffer is full.