[ZDP] BackTalk to Document The Zope Book (2.5 Edition)/Users and Security

webmaster@zope.org webmaster@zope.org
Mon, 23 Sep 2002 20:05:08 -0400


A comment to the paragraph below was recently added via http://www.zope.org/Documentation/Books/ZopeBook/current/Security.stx#3-101

---------------

      All web-based platform including Zope and many others are
      subject to this style of attack. All that is required is to
      trick someone into visiting a URL that performs a harmful
      action.

        % Anonymous User - Sep. 23, 2002 8:05 pm:
         "many others": Zope&others or web-based&others? if "all", why "others"?

         All computer systems are vulnerable to this style of attack.
         For web-base platforms all that is required is to trick an authorized, but unsuspecting user to visit a URL
         that performs a harmful action that the attacker himself is not authorized to perform.