Max M wrote:
Yes. But be aware that the pyc files can be relatively easily decompiled.
How to shut the backdoor inside the ZODB? Can we somehow remove the ZMI (the sources or better all the functionality of the Zope Management Interface)?
It all depends on the situation. In that case you would probably want to add a new user. A sub-manager that could then visit the management interfaces he was allowed to. Or you could write custom interfaces for your app.
What I think is, that inside the ZODB there are also two 'kinds of files'. Perhaps uncompiled and precompiled PythonScript? And source of all DTML -Methods and -Documents. With the ZMI you can look into the content of the ZODB. I want to create a CD-ROM with a autostarting ZServer. But my intention is to prevent the sources. At least a little bit. On the CD-ROM there is no need for a working ZMI any more, because the application should now be static (frozen version). So. How can we hide the sources from curious people? -- Best Regards, Marc Roland AICAT CA Technologies GmbH Dipl.-Ing.(FH) System Consultant Friedrich-Karl-Str. 101-103 Fon:+49/(0)221/971445-0 Fax:-5 Germany-50735 Koeln (Niehl)