> Nope. See http://www.zope.org/Members/jim/ZopeSecurity/ServerSideTrojan > about one quarter the way down. Which does bring be back to the question of what is the relationship between the 'nobody' user and the 'Anonymous' user. Currently, if you could re-authenticate as the Annonymous user, all would be good with the world ;-) Unfortunately, I don't think you can... Chris