/var/run/shibboleth musings

[Ferenc Wagner]

Hi,

/var/run/shibboleth is part of the libapache2-mod-shib2 package.
Shibd stores its pid file, communication socket and cached metadata
files there.  However, /var/run can be a tmpfs (it's an option in
/etc/default/rcS), which means that this directory may be missing on
reboot (I guess it still doesn't make it RC, though; or does it?)

How should we best handle this?  By patching configs/shibd-debian.in
in the source tree to mkdir -p @-PKGRUNDIR-@ before starting the
daemon?  Or by explicitly setting RUNDIR=@-PKGRUNDIR-@ at the top and
having PIDFILE=$RUNDIR/$NAME.pid and later mkdir -p $RUNDIR for easier
configuration?  Or should we hardcode RUNDIR=/var/run/shibboleth as
the Policy dictates and fail early on any upstream change?

Something like this can also come handly once we start running shibd
as _shibd instead of root.
-- 
Suggestions welcome,
Feri.