distribution directory permission for standalone/tmp/auth wrong --------------------------------------------------------------- Key: AS7-6848 URL: https://issues.jboss.org/browse/AS7-6848 Project: Application Server 7 Issue Type: Bug Components: Build System Affects Versions: 7.1.1.Final, EAP 6.1.0.Alpha (7.2.0.Final), 8.0.0.Alpha1 Reporter: Bernd Eckenfels Assignee: Paul Gier Labels: installer, zip The dist/assembly.xml file adds the tmp/auth directories for standalone and domain mode with limited permissions (because this directly contains the local authentication token files). Due to what looks like a copy and paste error however the permissions are wrong for the standalone mode. I am not sure if it can be exploited, but it is wrong. I will send a Github pull request.