Adobe Quietly Monitoring Software Use?

henrypijames writes "For months, users of Adobe Creative Suite 3 have been wondering why some of the applications regularly connect to what looks like a private IP address but is actually a public domain address belonging to the web analytics company Omniture. Now allegations of user spying are getting louder, prompting Adobe Photoshop product manager John Nack to respond, though many remain unsatisfied with his explanation."

Re:2o7.net *Not* 207.net

> GET /b/ss/mxcentral/1/F.3-fb/[sn-here]?[AQB]&purl=mm&pccr=true&c2=dw&c3=9.0&c4=win&c5=en&c6=full&c7=&c8=&c9=dw_9.0_win_en_full__[AQE] HTTP/1.1
> Referer: http://www.adobe.com/startpage/dw_content/dw_90_full_default.swf?prod=dw&ver=9.0&plat=win&lang=en&stat=full&tday=&spfx=&productName=dreamweaver
> x-flash-version: 9,0,45,0
> User-Agent: Shockwave Flash
> Host: 192.168.112.2O7.net

Why am I not surprised that Adobe's using Flash as its spyw^H^H^H^Hphone-home tool?

The only surprising thing about this story is that Adobe's managed to brib^H^H^H^Hconvince the vendors of "security" software to not declare Flash as a malware vector.

When was the last time you saw something as capable of interacting with both the web browser and the rest of the system as Flash... not have at least one security hole that could be exploited through the downloading of malicious content?