[Zope-CMF] Security Question

[Dieter Maurer]

Chris Withers writes:
 > Jon Edwards wrote:
 > > Would it be better to make the "Add portal content" permission more
 > > fine-grained? i.e. split it into "Add portal document", "Add portal file"
 > > ...and the same for "Change portal content" etc?
 > 
 > I'll punt that one to the Zope Corpers :-S
My personal feeling is "no".

  *  All of them are passive content.
     The default setting probably is to protect them all by the
     same permission.

  *  A CMF Site that really cares can easily provide a finer grained
     protection.

  *  We have too many permissions inside Zope, especially when we
     use the CMF


Dieter