[Zope] The Ascetic Superuser
Dieter Maurer
dieter@handshake.de
Thu, 7 Sep 2000 21:49:45 +0200 (CEST)
ethan mindlace fremen writes:
> Now every object excecutes according to the permision of the owner,
> *not* the viewer. It can also run as a proxy role. The
> super-bootstrap-user lives outside of "normal" zope authentication & has
> permission to do anything save that which NotEvenGodShouldDo.
> Therefore, it shouldn't own objects.
Am I really expected to understand this "Therefore"?
In fact, I do not!
Does it mean, that a Superuser can execute any method with
*ITS* privileges and not the intersection of its priviledges
with the owners privileges?
I hope (and expect) not!
Why is it much worse when an object is owned by Superuser
than by a manager?
What are the differences with respect to the Trojan Horse
or other security issues?
Dieter