Default sysdirs on Windows should be changed
On Windows, the personal and plus ado directories are, by default, under C:\ado.
On multi-user systems, this default setting is either very inconvenient if users do not have write permissions in C:\ado, since then they cannot use ssc install without first figuring out how to change their PLUS directory; or extremely insecure if they do have such write permissions, since then any user can place a malicious program in another user's ado path. This is quite serious, considering that ado programs allow you to run arbitrary shell commands, and the default Windows permissions on C:\ allow users to create directories there!
These defaults should be changed to be under some directory in %APPDATA% (e.g. %APPDATA%\Stata\ado\plus), since that is the correct place to store per-user application-specific files on Windows.[1]
Until the defaults change, you can fix this in sysprofile.do:
On multi-user systems, this default setting is either very inconvenient if users do not have write permissions in C:\ado, since then they cannot use ssc install without first figuring out how to change their PLUS directory; or extremely insecure if they do have such write permissions, since then any user can place a malicious program in another user's ado path. This is quite serious, considering that ado programs allow you to run arbitrary shell commands, and the default Windows permissions on C:\ allow users to create directories there!
These defaults should be changed to be under some directory in %APPDATA% (e.g. %APPDATA%\Stata\ado\plus), since that is the correct place to store per-user application-specific files on Windows.[1]
Until the defaults change, you can fix this in sysprofile.do:
Code:
local APPDATA : environment APPDATA capture mkdir "`APPDATA'\Stata" sysdir set PLUS "`APPDATA'\Stata\ado\plus" sysdir set PERSONAL "`APPDATA'\Stata\ado\personal" sysdir set OLDPLACE "`APPDATA'\Stata\ado"
Comment