> I'm still not clear on exactly why a domain socket is more secure than a > localhost tcp socket. Faster? Sure, but probably not by an amount that > matters. More secure? I really don't see how in this case.
Okay, why we should it listen to unneded port? Somebody could insensibly redirect packets. It's not the way it is supposed to be. You need to read the file for example, would you read it, or create a socket, wait for connections from the script and then read it? The more operations it performs, the more insecure the daemon is.
