[Zope-PTK] Security Bug in version 0.8.2-complete
Andy Dawkins
andyd@nipltd.com
Thu, 7 Sep 2000 08:47:20 +0100
I also noticed this bug in ZopePTK-0.8.2.
Basically the 'Reconfigure Portal' menu option appears for standard members
sometime in the toolbox.
I also believe that at Euro Zope in Paris Paul admitted it was a bug.
Although the bug seems to be fixed in the latest CVS checkout, as I haven't
seen it since I upgraded.
-Andy
> -----Original Message-----
> From: tseaver@zope.org [mailto:tseaver@zope.org]On Behalf Of Tres Seaver
> Sent: 07 September 2000 00:23
> To: hn75@gmx.de
> Cc: zope-ptk@zope.org
> Subject: Re: [Zope-PTK] Security Bug in version 0.8.2-complete
>
>
> Hendrik Naumann wrote:
> >
> > Hi
> >
> > I installed Zope-PTK from the file
> > http://www.zope.org/Products/PTK/ZopePTK-0.8.2-complete.tar.gz
> > on an Zope-2.2.0-linux2-x86 (SuSE 6.4) - System.
> >
> > I created some Members and realized that those (on a restarted
> > Browser) are able to access the portal-configuration and even change
> > settings there.
> >
> > If you need more infomations, please contact me.
>
> We have a tracker issue on this:
>
> http://www.zope.org/Products/PTK/Tracker/82
>
> Is that the same behavior you notice? I haven't reproduced it.
>
> Tres.
> --
> ===============================================================
> Tres Seaver tseaver@digicool.com
> Digital Creations "Zope Dealers" http://www.zope.org
>
> _______________________________________________
> Zope-PTK maillist - Zope-PTK@zope.org
> http://lists.zope.org/mailman/listinfo/zope-ptk
>
> See http://www.zope.org/Products/PTK/Tracker for bug reports and
> feature requests
>