-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I wrote:
I would rate Zope overall as a reasonably secure platform. Because the builk of it, including all the socket handling code, is written in If you look at the list of security alerts ("hotfixes", see
you will note that the *vast* majority of them have been relevant only for sites which allow less-than-fully-trusted users to write through-the-web code, a use case which most sites do not have.
and forgot to paste in the URL: http://www.zope.org/Products/Zope/ Sorry about that. Tres. - -- =================================================================== Tres Seaver +1 202-558-7113 tseaver@palladion.com Palladion Software "Excellence by Design" http://palladion.com -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFDxpc1+gerLs4ltQ4RAl2jAJ0eGt7KU18GVQOQPJDGbqerCL46rACePzzn kGukMqBWrmWUWh+zl5LDnN0= =Bld7 -----END PGP SIGNATURE-----