[Zope-dev] New Security Rules ... are very frustrating

Toby Dickenson tdickenson@geminidataloggers.com
Fri, 07 Dec 2001 10:54:35 +0000


On Thu, 06 Dec 2001 23:25:25 -0600, Stephan Richter <srichter@cbu.edu>
wrote:

>BTW, Y is not a nice Zope object but an instance from anywhere.

Preventing arbirary access from TTW code to 'an instance from
anywhere' is exactly what the security machinery is designed to
prohibit.=20

> And setting=20
>__allow_access_to_unprotected_subobjects__ does not help much either

You set this on the Y?

in what way does it not work?



Toby Dickenson
tdickenson@geminidataloggers.com