Following up on my own report, the bug is caused by 03-gcc4.dpatch which
moves pidfile creation in front of the switch to user 'nobody', meaning
that the pidfile can actually be created in /var/run. Upon termination,
the daemon lacks capabilities to remove the pidfile, though. The most
elegant way to solve the problem creates a dedicated system user like
Debian-pxe, a subdirectory /var/run/pxe owned by this user, and runs the
daemon with 'Debian-pxe' privileges instead of 'nobody'. ('nobody'
itself should not own any files on the system, hence the dedicated
user.) Alternatively, you can just drop euid and egid, and later regain
root privileges to unlink the pidfile, but that increases the security
risk.Regards, Daniel. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
