From owner-cvs-src@FreeBSD.ORG  Thu Aug 25 17:02:42 2005
Return-Path: <owner-cvs-src@FreeBSD.ORG>
X-Original-To: cvs-src@FreeBSD.org
Delivered-To: cvs-src@FreeBSD.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 5495416A41F;
	Thu, 25 Aug 2005 17:02:42 +0000 (GMT)
	(envelope-from rwatson@FreeBSD.org)
Received: from cyrus.watson.org (cyrus.watson.org [204.156.12.53])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 44DBE43D58;
	Thu, 25 Aug 2005 17:02:41 +0000 (GMT)
	(envelope-from rwatson@FreeBSD.org)
Received: from fledge.watson.org (fledge.watson.org [204.156.12.50])
	by cyrus.watson.org (Postfix) with ESMTP id 89CFD46BC5;
	Thu, 25 Aug 2005 13:02:40 -0400 (EDT)
Date: Thu, 25 Aug 2005 18:02:40 +0100 (BST)
From: Robert Watson <rwatson@FreeBSD.org>
X-X-Sender: robert@fledge.watson.org
To: Brooks Davis <brooks@one-eyed-alien.net>
In-Reply-To: <20050825165501.GB29549@odin.ac.hmc.edu>
Message-ID: <20050825180050.F16967@fledge.watson.org>
References: <200508241721.j7OHLcNP061118@repoman.freebsd.org>
	<20050825060448.Q11335@fledge.watson.org>
	<20050825154354.GE30465@funkthat.com>
	<20050825171046.X72462@fledge.watson.org>
	<20050825165501.GB29549@odin.ac.hmc.edu>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
Cc: cvs-src@FreeBSD.org, John-Mark Gurney <gurney_j@resnet.uoregon.edu>,
	src-committers@FreeBSD.org,
	Pawel Jakub Dawidek <pjd@FreeBSD.org>, cvs-all@FreeBSD.org
Subject: Re: cvs commit: src/lib/libutil Makefile libutil.h pidfile.3
	pidfile.c
X-BeenThere: cvs-src@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: CVS commit messages for the src tree <cvs-src.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src>,
	<mailto:cvs-src-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-src>
List-Post: <mailto:cvs-src@freebsd.org>
List-Help: <mailto:cvs-src-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src>,
	<mailto:cvs-src-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Aug 2005 17:02:42 -0000


On Thu, 25 Aug 2005, Brooks Davis wrote:

> This is probably a good idea for system daemons, but I'm not sure 
> there's much point in encouraging it for ports.

I think we'll find that more and more third party applications do know how 
to do this as a result of tight integration of selinux into upcoming Linux 
releases.  By placing pid files in separate directories, you avoid needing 
to grant fairly broad rights on the directory itself.  While you can 
pre-create pidfiles, other things like sockets generally can't be 
precreated in trivial ways without granting large amounts of privilege to 
the daemon when it starts running.

Robert N M Watson