On Mon, 19 Jun 2006 15:04:06 +0300 (EEST) "Martynas Venckus" <[EMAIL PROTECTED]> wrote:
> > I'm still not clear on exactly why a domain socket is more secure than a > > localhost tcp socket. Faster? Sure, but probably not by an amount that > > matters. More secure? I really don't see how in this case. > > Okay, why we should it listen to unneded port? Somebody could insensibly > redirect packets. It's not the way it is supposed to be. > > You need to read the file for example, would you read it, or create a > socket, wait for connections from the script and then read it? The more > operations it performs, the more insecure the daemon is. Using a TCP socket instead of a unix domain socket is not performing more operations. You will probably have fewer problems if you stop creating problems for yourself. Adam
