Subject: Re: CVS commit: pkgsrc/devel/distcc/files
To: Jeremy C. Reed <reed@reedmedia.net>
From: Juan RP <juan@xtraeme.nopcode.org>
List: pkgsrc-changes
Date: 11/15/2004 19:14:10
--Signature=_Mon__15_Nov_2004_19_14_10_+0100_+OuQKPEwAHY8Qwh+
Content-Type: text/plain; charset=US-ASCII
Content-Disposition: inline
Content-Transfer-Encoding: 7bit
On Mon, 15 Nov 2004 10:11:36 -0800 (PST)
"Jeremy C. Reed" <reed@reedmedia.net> wrote:
> On Mon, 15 Nov 2004, Juan Romero Pardines wrote:
>
> > Use /tmp as directory for $pidfile, because the nobody user cannot write
> > in /var/run!
>
> ! pidfile="/tmp/${name}.pid"
> ! command_args="--daemon --pid-file ${pidfile} --user nobody"
>
> This does not look safe.
>
> I don't know if distccd is smart enough to generate the pid file safely,
> but please verify that. (We wouldn't want it to overwrite someone's
> important file because of some malicious pre-made symlink.)
Do you suggest to create a specific directory to store the pidfile with
$dpam_user:$dspam_group 755?
--Signature=_Mon__15_Nov_2004_19_14_10_+0100_+OuQKPEwAHY8Qwh+
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (NetBSD)
iD8DBQFBmPHyypkLYVDran0RApCnAJ94JcZbyjFkK8YNyJBvt4yXTN0VagCgqrCX
hia26oIjRDmG0sUsgbWuDjE=
=U61c
-----END PGP SIGNATURE-----
--Signature=_Mon__15_Nov_2004_19_14_10_+0100_+OuQKPEwAHY8Qwh+--