security of file directory permissions for Application Pool Group
I started my site out giving only read permissions to the Application Pool Group for every folder except for a handful of folders that needed write permission. After a having backup issues and a few calls to tech support, we finally got backups going again. However, when creating a new directory today, I noticed that every folder now has Full Permissions for the Application Pool Group. Pretty sure I didn't do this.
Is there any security implications to this? I mean, it isn't like a user or an ftp account having full permission. But it still worries me enough that I'm on here asking about it.