[Zope] still bad perception of Zope about security
Jan-Frode Myklebust
janfrode@parallab.uib.no
Mon, 25 Jun 2001 10:06:54 +0200
>
> So I think something has to be done to restore Zope confidence around
> ISPs, but unfortunately I don't know what.
>
This might not be relevant to your ISP's setup, but
since Zope normally shouldn't access anything
outside its $HOME, shouldn't it be fairly
straightforward to set up the ZServer to use a
restricted environment (rexec)? Alternatively one
could do a chroot() before starting the server. Have
anybody hacked the ZServer to run restricted?
-jf