Remix.run Logo
Remix clone Hacker News
new | show | ask | jobsGithub
Adobe wrote to my hosts file. I've never had an app do this before(old.reddit.com)
92 points by speckx 2 days ago | 23 comments
sapiosenses 40 minutes ago | parent | next [-]

Apparently it's using a rooted background process installed at software installation time.

This whole practice needs to be exposed since it essentially gives any piece of software complete control over the machine simply because the user was supposedly asked to "temporarily" provide admin/root access to the installer in order to install some app.

But in addition to that, it also installed a rooted background process that essentially grants them access to read/write anything on the machine, forever.

jt2190 2 days ago | parent | prev | next [-]

Redditor thenickdude commented:

> I found that in my hosts file the other day too, and I investigated to find why they're doing it at all.

> They're using this to detect if you have Creative Cloud already installed when you visit on their website.

> When you visit https://www.adobe.com/home, they load this image using JavaScript: https://detect-ccd.creativecloud.adobe.com/cc.png

> If the DNS entry in your hosts file is present, your browser will therefore connect to their server, so they know you have Creative Cloud installed, otherwise the load fails, which they detect.

> They used to just hit http://localhost:<various ports>/cc.png which connected to your Creative Cloud app directly, but then Chrome started blocking Local Network Access, so they had to do this hosts file hack instead.

tdeck 2 days ago | parent | next [-]

This is clever in a way, but I wonder what the review process looks like on that team (I say that team because my experience at Adobe was that the company is very heterogeneous).

dagmx 2 days ago | parent [-]

They’re still completely heterogeneous in my experience as someone who works with each of their teams. It’s like talking to completely different companies who have little idea what the others are doing.

tdeck a day ago | parent [-]

It's because Adobe grew through acquisitions and they have a philosophy of "let teams keep working in the way that works for them".

evanjrowley 2 days ago | parent | prev | next [-]

Novel. A similar approach could be taken by other SaaS tools to comply with age verificaiton laws. Just write an entry to the client's hosts file that points to a subdomain corresponding to a particular birth year. Simple enough for legislative representatives to understand.

/s

michaelbuckbee 2 days ago | parent | prev [-]

The underlying intent here (figure out if it's an existing customer of our locally installed apps when they visit our website) doesn't seem bad, but I certainly dislike both the hosts file and localhost detection options.

I'm curious if there's a "good" way to do this.

ssdspoimdsjvv 2 days ago | parent | next [-]

I dislike the intent too. A website should simply not be able to see which apps I've got installed. Imagine Facebook doing stuff like this in order to know what ads they should serve.

porridgeraisin 2 days ago | parent [-]

Fairly certain they already do, atleast on mobile.

ZoneZealot 2 days ago | parent | prev | next [-]

Next they'll be installing a font like TeamViewer did... https://community.teamviewer.com/English/discussion/124507/s...

10729287 2 days ago | parent | prev [-]

Just do it by asking users to log in. Am I missing something here ?

johntash 2 days ago | parent [-]

No that seems like the reasonable expectation to me too.

aisignaldev 2 days ago | parent | prev | next [-]

This is the kind of thing that erodes trust slowly. Most users will never notice, and that's exactly the point. Would be interesting to know if this is documented anywhere in Adobe's ToS or if it's purely undisclosed behavior.

10729287 2 days ago | parent | prev | next [-]

The same Adobe that is squatting my /documents folder on my Mac ?

curt15 2 days ago | parent | prev | next [-]

How is Adobe modifying a system file at all? Does Adobe run a background process with root privileges?

asdff 2 days ago | parent | next [-]

Yup. Just checked. Right now I have "com.adobe.acc.installer.v2" running as root on two threads. The other 3 background processes (at least those with adobe in the name) are under the user. The whole stack is using like 75mb ram at all times. You kill the process they restart. You delete the files from your launchd, open adobe software they come back.

BoredPositron 2 days ago | parent | prev [-]

AGMServices it's optional but gets shoe horned at install time.

colejohnson66 2 days ago | parent [-]

Even then, the installer itself has administrative access already, should they choose to do it then.

ChrisArchitect 2 days ago | parent | prev | next [-]

[dupe] https://news.ycombinator.com/item?id=47617463

makeitrain 2 days ago | parent | prev | next [-]

Ddev does this too, to set up local domains when you’re offline. Asks for permission at least.

altairprime 2 days ago | parent | prev | next [-]

Sounds like a job for chattr +i, though who knows what will happen someday if a macOS installer script tries to modify it.

KellyCriterion a day ago | parent | prev | next [-]

Well, Tailscale does this during install on Windows :-))

scottburgess33 2 days ago | parent | prev [-]

[dead]