SecureZEO rehash, was Re: [ZODB-Dev] ZEO signal feature

Guido van Rossum guido@python.org
Mon, 23 Sep 2002 21:08:31 -0400


> I have been doing IP based access control with ZEO for quite some time
> now, where whether a ZEO client can connect and whether it can
> read/write or read only is specified on the ZSS. I am currently 
> running it on several production sites, one of which has been 
> runing for getting on towards a year now with this code.
> 
> I have posted several times but never garnered any interest in it.
> http://www.zope.org/Members/smog/index_html

I hope you realize that it's (apparently) rather easy to spoof IP
addresses, so you're taking your chances here.

> I have not yet looked at porting it to Zeo 2.

Is the community interested in this?  Zope Corp would never recommend
this to its customers, but that doesn't mean we can't add such an
option to a ZEO distribution for people in the community who feel this
need (with a big disclaimer).

IOW if you get to porting it to ZEO 2, please send us a patch.

--Guido van Rossum (home page: http://www.python.org/~guido/)