--Signature=_Mon__15_Nov_2004_19_14_10_+0100_+OuQKPEwAHY8Qwh+
Content-Type: text/plain; charset=US-ASCII
Content-Disposition: inline
Content-Transfer-Encoding: 7bit

On Mon, 15 Nov 2004 10:11:36 -0800 (PST)
"Jeremy C. Reed" <reed@reedmedia.net> wrote:

> On Mon, 15 Nov 2004, Juan Romero Pardines wrote:
> 
> > Use /tmp as directory for $pidfile, because the nobody user cannot write
> > in /var/run!
> 
> ! pidfile="/tmp/${name}.pid"
> ! command_args="--daemon --pid-file ${pidfile} --user nobody"
> 
> This does not look safe.
> 
> I don't know if distccd is smart enough to generate the pid file safely,
> but please verify that. (We wouldn't want it to overwrite someone's
> important file because of some malicious pre-made symlink.)

Do you suggest to create a specific directory to store the pidfile with 
$dpam_user:$dspam_group 755?


--Signature=_Mon__15_Nov_2004_19_14_10_+0100_+OuQKPEwAHY8Qwh+
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (NetBSD)

iD8DBQFBmPHyypkLYVDran0RApCnAJ94JcZbyjFkK8YNyJBvt4yXTN0VagCgqrCX
hia26oIjRDmG0sUsgbWuDjE=
=U61c
-----END PGP SIGNATURE-----

--Signature=_Mon__15_Nov_2004_19_14_10_+0100_+OuQKPEwAHY8Qwh+--