[Zope] WebDAV defaults to be open for anonymous!!!

iap@y2fun.com iap@y2fun.com
Thu, 3 Jan 2002 12:50:48 +0800


I works with zope for quite a long time never perceived this situation.
Just for mercy  to post this for those careless people like me.
"""Even your have disabled the WebDAV server in your startup shell script,
Anonymous user can also access your zope installation via WebDAV at
your regular http server port (usually is 8080)."""
It may or may not be harmful, but
if it is not what you expect, you have to revoke the permission of "WebDAV
access"
from anonymous. I assume you know how to do it.

www.zope.org and www.ZopeZen.org also open their WebDAV access for
anonymous user, it's for their generosity I think, they usually are kindly
people.

Iap, Singuan