diff --git a/install/alternc.install b/install/alternc.install
index 5b40707a..07c86175 100755
--- a/install/alternc.install
+++ b/install/alternc.install
@@ -259,9 +259,7 @@ PUBLIC_IP_BEGIN=$(echo $PUBLIC_IP|cut -c 1)
 # Secret for PhpMyAdmin sessions
 PHPMYADMIN_BLOWFISH="$(generate_string 32)"
 
-# XXX: I assume this is secure if /tmp is sticky (+t)
-# we should have a better way to deal with templating, of course.
-SED_SCRIPT="/tmp/alternc.install.sedscript"
+SED_SCRIPT=$(mktemp)
 # Escape passwords for sed and restore afterwards
 # Escaping '&' and '|' since those are used as special characters
 MYSQL_PASS_ORIG="$MYSQL_PASS"