14 Jun
2004
14 Jun
'04
5:44 p.m.
No reason to justify anything - just wanted to make sure you are aware. jens On Jun 14, 2004, at 11:45 AM, Passin, Tom wrote:
From: zope-bounces@zope.org [mailto:zope-bounces@zope.org] On
Those can be spoofed as well. There's no increased security there.
Yes, but... In this case the customer wants (or thinks it is wanted) this kind of capability, and the security does not have to be the very highest. Many web servers let you set this kind of restriction. Of course, having authenticated users be members of groups with the restricted role is more secure, but it does require that each person join and be manually assigned to the select group.