7 Nov
2002
7 Nov
'02
6:23 p.m.
On Thu, Nov 07, 2002 at 07:08:53PM +0100, Florent Guillaume wrote:
Ok, Unix is the one that poses security problem. If the others are suitably restricted then ok, I have no beef with them.
Basically the problem is that you may allow a remote hacker the use of local exploits instead of restricting him to remote exploits.
agreed. ... snip
Mind you, it's probably helpful to some people, but I feel this departs strongly from the basic Zope security model and should be noted prominently. Consider for instance what XXXPythonScript requires:
In order to create or edit XXX Python Scripts, you have to set "ALL_YOUR_BASE_ARE_BELONG_TO" equal to "US".
good idea. I'll think about such a solution. Jerome Alet