sensitive info in ds_store file?

[NoBob]

Hi,

I was wondering if there's any sensitive info in DS-Store files? Is my name in the files, for example? Or what computer I'm on?

Thanks,

NoBob.

 

[SC68Cal]

http://www.securityfocus.com/bid/3324/discuss

 

[NoBob]

Thanks. So is that a 'no' then regarding sensitive info, like my name, in the ds_store file? I understand that some system info was present in theses files pre 10.1, but now? Is it possible to view what's contained in a ds_store file now?

 

[SC68Cal]

Only 10.1 is not affected, according to the advisory. It doesn't have your name and personal info, but it does give a lot of system information.

 

[NoBob]

Hi,

You mean 10.1 is affected, rather than "not affected"?

 

[SC68Cal]

Hi,

You mean 10.1 is affected, rather than "not affected"?

No.

look at what they list as being "vulnerable" and "not vulnerable"

 

[xUKHCx]

Thanks. So is that a 'no' then regarding sensitive info, like my name, in the ds_store file? I understand that some system info was present in theses files pre 10.1, but now? Is it possible to view what's contained in a ds_store file now?

You can open them in TextEdit, some stuff is scrambled bt you'll get the idea of what is contained in it.

 

[SC68Cal]

You can open them in TextEdit, some stuff is scrambled bt you'll get the idea of what is contained in it.

Just use a hex editor. You'll get everything.

 

[Halcyon]

Besides the fact if this files carry sensitive info or not...Can you delete them (trash them)?

 

[Taylor C]

As far as I know, the .DS_Store files are used by the Finder. Even if you deleted them, they'd probably just be replaced.

 

[SC68Cal]

Besides the fact if this files carry sensitive info or not...Can you delete them (trash them)?

yup. just rm 'em.

As far as I know, the .DS_Store files are used by the Finder. Even if you deleted them, they'd probably just be replaced.

and that's what sucks about it.

 

[Krevnik]

and that's what sucks about it.

When the DS_Store file is supposed to just be information on the view settings of the directory/etc, there usually shouldn't be a reason to delete them. Granted, Windows doesn't understand hidden files in the same way that OS X and Linux does, and apparently that drives people nuts thinking that Apple did the wrong thing. :/

 

[Fairly]

I was wondering if there's any sensitive info in DS-Store files? Is my name in the files, for example? Or what computer I'm on?

Why don't you look?

 

[Fairly]

You can open them in TextEdit

Not ideal. Look up /usr/bin/hexdump.

 

[Fairly]

When the DS_Store file is supposed to just be information on the view settings of the directory/etc, there usually shouldn't be a reason to delete them.

Depends who you are and what you use. Apple has admitted it's a bug. And for the record they used to have sensitive information in them. Now they don't again but you never know when they will again. The thing is people didn't see them and by mistake uploaded them to their web sites and then they got hacked. "FTFF!"

 

[xUKHCx]

Not ideal. Look up /usr/bin/hexdump.

Didn't know about that, just suggested textedit because it is something everyone knows about, but i do agree it is not ideal.

Also use the multi quote button

for quoting lots of posts in a thread.