Re: [Zope-dev] Introspection, managing External Methods?
This has come up on a number of occasions - the problem is that an external method can subvert all the protections and access control that Zope provides. Having said that, there's nothing stopping you (or someone else) writing an external method that allows you to edit external methods. :) Anthony
Robin Becker wrote Are there any plans to upgrade the External Methods product to allow remote management ie creation/deletion/modification of the file texts? I ask because a major advantage of Zope is the ability to manage at a distance and this is not possible for External Methods. I can see easy fudges using a hack of fsimport, but something based on the existing external methods would be better.
More generally how can one upgrade a Zope product remotely; assuming this were possible it would be nice to be able to remotely shut down Zope and get it to restart. -- Robin Becker
_______________________________________________ Zope-Dev maillist - Zope-Dev@zope.org http://www.zope.org/mailman/listinfo/zope-dev
(For non-developer, user-level issues, use the companion list, zope@zope.org, http://www.zope.org/mailman/listinfo/zope )
-- Anthony Baxter <anthony@interlink.com.au> It's never too late to have a happy childhood.
In article <199907181357.XAA01659@mbuna.arbhome.com.au>, Anthony Baxter <anthony@interlink.com.au> writes
This has come up on a number of occasions - the problem is that an external method can subvert all the protections and access control that Zope provides.
Having said that, there's nothing stopping you (or someone else) writing an external method that allows you to edit external methods. :)
Anthony
Yes I know that external methods can do anything. But since the manager can destroy the site what's wrong with allowing editing only for the manager. I realise that malicious managers could wipe the hard disk if the manager user could, but then so can the manager sitting at the console. The FTP client could in principle help, but is restricted/failing. I cannot seem to get two ftp servers going. One based on FTPServer and the other based on ftp_server.ftp_server. The trivial server that works as a separate process is at the bottom. I can get both servers to start, but the fs based one doesn't respond like the script below. One thing I would like to see in the properties for each object would be the owner. I suppose I can just write a manager only dtml widget for copying the module text onto a page with a change button.
Robin Becker wrote Are there any plans to upgrade the External Methods product to allow remote management ie creation/deletion/modification of the file texts? I ask because a major advantage of Zope is the ability to manage at a distance and this is not possible for External Methods. I can see easy fudges using a hack of fsimport, but something based on the existing external methods would be better.
More generally how can one upgrade a Zope product remotely; assuming this were possible it would be nice to be able to remotely shut down Zope and get it to restart. -- Robin Becker
...
import os import sys import ftp_server import resolver import logger import asyncore FTP_ROOT= '/tmp/newhome' FTP_PORT= 21 rs = resolver.caching_resolver('') lg = logger.file_logger (sys.stdout) ftp = ftp_server.ftp_server ( ftp_server.anon_authorizer ( FTP_ROOT ), port=FTP_PORT, resolver=rs, logger_object=lg ) asyncore.loop() -- Robin Becker
On Sun, 18 Jul 1999, Robin Becker wrote:
In article <199907181357.XAA01659@mbuna.arbhome.com.au>, Anthony Baxter <anthony@interlink.com.au> writes
This has come up on a number of occasions - the problem is that an external method can subvert all the protections and access control that Zope provides.
Having said that, there's nothing stopping you (or someone else) writing an external method that allows you to edit external methods. :)
Anthony
Yes I know that external methods can do anything. But since the manager can destroy the site what's wrong with allowing editing only for the manager. I realise that malicious managers could wipe the hard disk if the manager user could, but then so can the manager sitting at the console. Nope. The semantic difference between a .dtml file and a .py file is, that .dtml always terminate. Dtmls do not provide general looping or controlflow mechanisms, while external methods written in Python do. (while 1: pass).
Andreas -- Win95: n., A huge annoying boot virus that causes random spontaneous system crashes, usually just before saving a massive project. Easily cured by UNIX. See also MS-DOS, IBM-DOS, DR-DOS, Win 3.x, Win98.
participants (3)
-
Andreas Kostyrka -
Anthony Baxter -
Robin Becker