[Zope] webdav access defaults to anonymous?
Dylan Reinhardt
zope@dylanreinhardt.com
Wed Aug 6 20:02:42 EDT 2003
On Wed, 2003-08-06 at 11:38, Lee Harr wrote:
> There is a setting for "WebDAV Access" which was marked "Anonymous"
> and which I am sure I never changed.
That's the default setting. Shouldn't be, probably, but it is.
>
> Should this default to manager only?
It should be set according to how you want WebDAV to work. At a
minimum, I'd restrict it to Authenticated unless you're running a public
file server.
It's a good idea to take a close look at your other security settings
too. There are a couple other default settings (like "Access contents
information") that may be more permissive than you might expect.
HTH / IMO,
Dylan
More information about the Zope
mailing list