Would it be sufficient to disallow the PROPFIND for non-authenticated
users ?
- aj
- Original Message -
From: "Barry Pederson" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, March 06, 2002 11:39
Subject: Re: [Zope-dev] WebDAV quibble -- fix in 2.6?
Casey Duncan wrote:
> This maybe more 2.6 (or even 2.5.1 final) fodder:
>
> I notice that in a vanilla Zope install, Anonymous users are allowed access
> through WebDAV. This is bad for two reasons:
>
> 1. From a security perspective this discloses way too much information about
> your site to
This maybe more 2.6 (or even 2.5.1 final) fodder:
I notice that in a vanilla Zope install, Anonymous users are allowed access
through WebDAV. This is bad for two reasons:
1. From a security perspective this discloses way too much information about
your site to the outside world.
2. Due to vag