[kennethmac2000]

Does anyone else think it is a bug that the permissions are wide open on files copied from disk images?

The most serious consequence of this bug is that the average Applications folder is full of apps with wide open permissions (ie, they are world writable), due to the apps being simply dragged over from disk images.

Apple apparently considers this correct behaviour, but I can't see how they can think this is the case. It basically defeats the purpose of having separate administrators on machines except where the administrator is knowledgeable enough to alter the permissions on every disk image installed application.

[pat++]

It seems to be an issue, you're right. I had a quick look in my Applications folder, and it seems that a lot of folders are world writable but regular files are only writable for the owner. So, the issue only affects folder?

[chris v]

Adobe has opened a pretty serious hole for software pirates with their registration database. Someone running something as simple as an FTP server without proper security is wide open to have all their Adobe serial numbers lifted. I think standard UNIX file structure can allow any user to browse upward through the file structure on a server, and the Adobe Registration Database is an unencrypted pain text file (stored in /Lbrary/Application Support/Adobe) that has wide-open read and write priveleges.

What's to stop someone who can gain access to your Applications folder from grabbing your copy of Photoshop and your serial number?

I strongly suggest changing the permissions on this file to others: no access.


CV