[Zope] Zope Security

Alastair Burt burt@dfki.de
15 May 2001 16:15:54 +0200


I am getting aggravation from our sysadmin, who is reluctant to poke holes
in our new firewall for my Zope ports.  He claims he knows of no software
in the last few years that has so many security holes.  Is there anything
to justify this claim?  I know there are an alarmingly large number of Zope
hotfixes on the security mailing lists and that login passwords get sent in
the clear, when not using ssl.  On the other hand, I know of no attempt to
hack a Zope site.

--- Alastair