Hello All, We've been working with Zope on a few projects, and have come to realize that our development methodology has left some wide gaps in security. Let me demonstrate with an example: The project heirarchy basically looks like this: /root index.html otherfiles.html /queries all Z SQL Methods /scripts all python scripts The problem as I percieve it is that you can feed my Z SQL Methods and python scripts any input you want if you know what they are called. This is bad. Security via Obscurity is not secure. I *thought* that perhaps I could revoke all rights to Anonymous from the methods and scripts, and then give them to Owner, and Proxy Role the .html files to Owner, but that seems to block inter-script and script-to-query calls. I would have to Proxy Role every object, of which there is no easy interface to do so. Anyone with better thoughts on securing my scenario? (Or, indeed, if I need to turn my scenario on its head?) Ed