[ZODB-Dev] Daemon manager design issues

[Guido van Rossum]

> >Why?  I know you mean this as a security measure, but I'm unclear why
> >the pid file would be any more vulnerable than, say, the Data.fs, or
> >any other file written by any of these tools.  What's the specific
> >attack scenario you're thinking about?
> 
> Perhaps simple vandalism?  Symlink zeod.pid to your Data.fs and the
> server may overwrite it on starting up.

I think that the standard setup is to have zeod.pid in the same
directory as Data.fs.  If you can create a symlink there, you can
delete Data.fs as well.

> BTW, you may want to look at Dan Bernstein's daemontools for ideas;
> they provide a framework for starting and stopping daemon processes.
> (You might even consider using daemontools, but like Bernstein's other
> tools the directory organization is a bit eccentric and the license
> may be a problem.)  See http://cr.yp.to/daemontools.html .

Someone posted here earlier saying they were lacking something; I
forget what.

--Guido van Rossum (home page: http://www.python.org/~guido/)