[Zope] still bad perception of Zope about security

Jan-Frode Myklebust janfrode@parallab.uib.no
Mon, 25 Jun 2001 10:06:54 +0200


> 
> So I think something has to be done to restore Zope confidence around
> ISPs, but unfortunately I don't know what.
> 

This might not be relevant to your ISP's setup, but
since Zope normally shouldn't access anything
outside its $HOME, shouldn't it be fairly 
straightforward to set up  the ZServer to use a 
restricted environment (rexec)? Alternatively one
could do a chroot() before starting the server. Have
anybody hacked the ZServer to run restricted?


  -jf