[Zope-dev] Security still wierd
Dieter Maurer
dieter@handshake.de
Wed, 1 Aug 2001 20:12:02 +0200 (CEST)
Michael R. Bernstein writes:
> On 31 Jul 2001 21:36:53 +0200, Dieter Maurer wrote:
> > It should work.
>
> I know, <sigh>.
>
> > Maybe "initializeClass" overwrites it again.
> > Try to set it after the "initializeClass":
> >
> > initializeClass(klass)
> > klass.__allow_access_to_unprotected_subobjects__ = 0
>
> Thanks for the suggestion, but that still isn't it. Would you like to
> take a look at my code?
Looking at the code is usually not enough for analysing difficult
behavior (as yours seems to be). I fear, debugging will be necessary.
I don't know, how easy it will be that you can downstrip
your code in a way that it becomes debuggable in a standard
installation...
Dieter