You are not logged in Log in Join
You are here: Home » Download Zope Products » Zope » Hotfix-200400807 » Hotfix-20040807 Alert » Why unauthorized? » discussionitem_view
Log in
Name

Password

 
Link icon Forgot your password?
Print

Comment

Above in this comment thread: Hotfix-20040807 Alert » Insufficient Privileges »

Comment

Discussion icon Why unauthorized?

Posted by: tseaver at 2004-08-11

I wish I knew for sure. I unrestricted the issue, after obscuring the very clear exploit recipe. I did make a "private" copy of the original report; maybe the collector skin isn't clever enough to do skip-unauthorized on the file list?

Comment

Discussion icon Should be fixed

Posted by: tseaver at 2004-08-11

I moved the "private" file down into a subfolder, which should allow the issue's view template to render for anonymous users.

 
Copyright (c) 2011 Zope Foundation. All rights reserved. Legal | Contact
If you can read this text, it means you are not experiencing the Plone design at its best. Plone makes heavy use of CSS, which means it is accessible to any internet browser, but the design needs a standards-compliant browser to look like we intended it. Just so you know ;)