It seems that optimised dex files that are placed in /data/dalvik-cache upon installation have -rw-r--r-- permissions (644).
Is there a reason 'others' are allowed to read the files? How can optimised dex files have 640 permissions? Same question applies to apks placed in the /data/app directory after installation. Also, native libraries are now placed in /data/app-lib/myapp/ directory, with all .so files having -rwxr-xr-x permissions. Why? -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/android-security-discuss?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
