On Fri, 25 Mar 2005 09:19:53 -0400, David Pratt <fairwinds@eastlink.ca> wrote:
Yes, this is a good approach, however am concerned about management from locations that may not have a static IP (if IP changes, then you are hooped). I am also looking for a way that this might not be tied to where someone might be located. I don't know if there is a solution that could involve a rewrite rule to manage and having a specific URL (other than manage) for logging in that is only known to the manager.
No, but I think you can allow manage* only via SSL for example. This makes it very unobvious that it uses Zope, and increases security quite a bit. -- Lennart Regebro, Nuxeo http://www.nuxeo.com/ CPS Content Management http://www.cps-project.org/