On 30/09/2010, at 12:55 AM, Hanno Schulz wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Hello > > I am looking for a solution to restrict access between plone portals > on the same > zope server. > > The Problem: > Zope Root > / > |- Portal A > |- Portal B > > When you call server/Portal B/somefolder/Portal A/ you get the > content from > Portal A instead an error page (for example 404). > I know it's the "normal" zope acquistion :( But is there a way to stop > traversing at the plone portal root?
very good question. I normally mount plone sites in their zodb in a structure such as 01/mnt/ploneA 02/mnt/ploneB The main reason for this is using separate Data.fs for each plone site which can also be easily interchangeable. This would also have the side effect of making the paths needed for interference happen less often. Put some longer random folder names in there if you want to further reduce the chances. I'd be interested if if there is a more concreate way to stop the acquisition. Perhaps through security settings? > > Thanks > Hanno Schulz > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v2.0.9 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ > > iQEcBAEBAgAGBQJMo1NFAAoJEGMseF/RWBlbsOYH/j+Lyrx9GKEJIm+rL+U4Gt3e > GdSSzaJIIa//9JXbrmLUHWzoVvohQK6HrxAmSfqe+3EDcPCWDAdPNvHEnTKV/RLe > 5XPeqJKUCUmGttsXWGsbza3Iz4B3nOQOxHK7v94BQEdDQGY//RNsL3p1FVKIqVFk > c8SrMkEwNSnAeHqxNw5T2v6M4PkRQoY16HyJNf1F/5gQ+AuU6PP9WyB02KSUrxyT > reaY4wuRVWJH17cu/ycidZ8MrpS4OPBlVlvzpPjMIZkk6D3RzsTHag5ktN1poTqy > 9DGpftKnHobEdIOaPp5PD41Kc8kRZ9AFOYd5cEons1uFBVOCiFb1uJ7tw9mUPNQ= > =Y5Tw > -----END PGP SIGNATURE----- > - > Diese Information ist ausschliesslich fuer den Adressaten bestimmt > und kann > vertraulich oder gesetzlich geschuetzte Informationen enthalten. > Wenn Sie nicht > der bestimmungsgemaesse Adressat sind, unterrichten Sie bitte den > Absender und > vernichten Sie diese Mail. > Anderen als dem bestimmungsgemaessen Adressaten ist es untersagt, > diese E-Mail > weiterzuleiten oder ihren Inhalt auf welche Weise auch immer zu > verwenden. Wir > verwenden aktuelle Virenschutzprogramme und Content-Filter. > Fuer Schaeden, die dem Empfaenger gleichwohl durch von uns > zugesandte mit Viren > befallene E-Mails entstehen, schliessen wir jede Haftung aus. > - > This e-mail and any attachments is confidential and solely intended > for the > indicated addressee. If you are not the intended recipient or an > authorized > person, please note, that any form of notice, disclosure, > reproduction or > circulation of the contents of this mail is prohibited. In this > case, please > immediately inform the sender of the e-mail an destroy this e-mail. > We use > updated antivirus protection software. We do not accept any > responsibility for > damages caused anyhow by viruses. > - > catWorkX GmbH: Sitz der Gesellschaft in Hamburg, HRB: 71494, USt- > IdNr.: > DE201625856, Geschaeftsfuehrung: Dipl. Kfm. Andreas Girnuweit, Dipl.- > Ing. Oliver > Groht, Dr. Wolfgang Tank > _______________________________________________ > Product-Developers mailing list > [email protected] > http://lists.plone.org/mailman/listinfo/product-developers _______________________________________________ Product-Developers mailing list [email protected] http://lists.plone.org/mailman/listinfo/product-developers
