[ZDP] BackTalk to Document The Zope Book (2.5 Edition)/Users and Security
webmaster@zope.org
webmaster@zope.org
Mon, 23 Sep 2002 20:05:08 -0400
A comment to the paragraph below was recently added via http://www.zope.org/Documentation/Books/ZopeBook/current/Security.stx#3-101
---------------
All web-based platform including Zope and many others are
subject to this style of attack. All that is required is to
trick someone into visiting a URL that performs a harmful
action.
% Anonymous User - Sep. 23, 2002 8:05 pm:
"many others": Zope&others or web-based&others? if "all", why "others"?
All computer systems are vulnerable to this style of attack.
For web-base platforms all that is required is to trick an authorized, but unsuspecting user to visit a URL
that performs a harmful action that the attacker himself is not authorized to perform.