On Thu, Oct 04, 2007, Henrik Nordstrom wrote: > > Phew. I did just re-check it and Henrik's right. > > But Amos is right that the public template should have access controls > to make this dead clear, or at least "never_direct allow all". It's hard > to know what the admin does to the config and this implicit > "never_direct" is pretty well hidden..
Updated. Adrian
