12 May
2003
12 May
'03
3:07 p.m.
Anthony Baxter wrote:
Chris Withers wrote
Anthony Baxter wrote:
So we had a couple of people who'd been working on zope here leave, and their user objects got deleted.
That wasn't a good idea ;-) Much better to just set their passwords to something random...
That's a pragmatic approach, sure. But it sucks arse as a general rule.
Not if you have any kind of need for an audit trail. You want to know who did what, and when. The approach I suggested is particularly handy as you get a transaction entry when yo ureset their password, so you can tell when they should have stopped doing things ;-) cheers, Chris