(Wed, Feb 08, 2006 at 12:00:07PM -0500) [EMAIL PROTECTED] wrote/schrieb/egrapse:
From: michael nt milne [EMAIL PROTECTED]
Subject: [Zope] major problems placing authentication on an extranet
site-security flaw?
I have major problems here trying to set-up authentication over a whole
Dennis Allison wrote:
Zope 2.8.4
Python 2.4.2
Startup error with Formulator. What's missing or broken?
The offending file is:
configure
xmlns=http://namespaces.zope.org/zope;
xmlns:i18n=http://namespaces.zope.org/i18n;
!-- i18n --
i18n:registerTranslations directory=i18n
michael nt milne wrote:
Look I'm having genuine issues here and to be honest there's no need to
become personally insulting.
And what do you think you're doing by continuously coming back with
phantom problems that no-one else experiences because they don't exist?
And how about your
Two things to check
- Does your /etc/mime.types file on the server contain the correct
entry for msword?
- Do your clients (browsers) reliably sent the msword content-type?
Stefan
On 7. Feb 2006, at 19:16, Palermo, Tom wrote:
All,
I am working on a project using ExtFile. Lately, when
Sorry but the SSL and virtual hosting through Apache is all working fine. It's only the authentication bit that I'm having an issue with. Should be easy compared to what I've configured previously. And isn't it Plone? :-)
On 2/9/06, Chris Withers [EMAIL PROTECTED] wrote:
michael nt milne wrote:
michael nt milne wrote:
Sorry but the SSL and virtual hosting through Apache is all working fine.
It's only the authentication bit that I'm having an issue with. Should be
easy compared to what I've configured previously.
Yeahright, that gives some idea of the lack of understanding you have...
Over and out on this one from me and thanks for all your help Sorry but SSL over virtual hosts *is* more involved that setting up a basic password protectOn 2/9/06,
Chris Withers [EMAIL PROTECTED] wrote:
michael nt milne wrote: Sorry but the SSL and virtual hosting through Apache is all
michael nt milne wrote:
Over and out on this one from me
You promise? ;-)
Chris
--
Simplistix - Content Management, Zope Python Consulting
- http://www.simplistix.co.uk
___
Zope maillist - Zope@zope.org
michael nt milne wrote:
Sorry but can't you post in one message?
That, coming from you, is pretty rich ;-)
Also, Zope does do SSL but it's not
as good as Apache.
No, Zope doesn't. There are some half baked addons that sort of promise
to do something like SSL, but I'd trust them as far as
On 2/9/06, michael nt milne [EMAIL PROTECTED] wrote:
Over and out on this one from me and thanks for all your help Sorry but
SSL over virtual hosts *is* more involved that setting up a basic password
protect
My 2 cents on this thread: I've seen (ok, I've done, long ago) the
following as a
I am attempting to extract information from a ParsedXML object using
Python script.
I can't seem to get my mind around exactly how this works. Can anyone
point non trivial examples in Python of maniupulating a ParsedXML
object?
___
Zope maillist -
Thanks.
On Thu, 9 Feb 2006, Martijn Faassen wrote:
Dennis Allison wrote:
Zope 2.8.4
Python 2.4.2
Startup error with Formulator. What's missing or broken?
The offending file is:
configure
xmlns=http://namespaces.zope.org/zope;
glad you've taken that on board :-) Over and out from me on this one as well. By the way using the location/location directive is the way to password protect using Apache on non directory based virtual hosts. It works using the URL line rather than directory access. Just so you know. And that
michael nt milne schrieb:
glad you've taken that on board :-) Over and out from me on this one as
well. By the way using the location/location directive is the way to
password protect using Apache on non directory based virtual hosts. It works
using the URL line rather than directory access.
On 2/7/06, michael nt milne [EMAIL PROTECTED] wrote:
Also Zope doesn't do SSL well and all password - login is
basically insecure!
If you mean that logins without SSL are basically insecure, ok. But
given your other posts, if you mean that Zope authentication is
somehow inherently insecure
I have been looking (almost) everywhere, but I can't find the Version
line in the main combo box (the one for adding products).
This means that I cannot start working in a Version.
I can't find the Add Version line in the security tab, either.
In Control Panel I can see the Version Management,
On 09.02.06 18:38:57, Luca Dall'Olio wrote:
I have been looking (almost) everywhere, but I can't find the Version line
in
the main combo box (the one for adding products).
This means that I cannot start working in a Version.
I can't find the Add Version line in the security tab, either.
In
Chris Withers wrote at 2006-2-8 23:04 +:
...
If the code is in a disk-based class method, security won't be coming
into play.
Unless you call something with internal security checks (such
as e.g. _verifyObjectPaste during manage_paste).
--
Dieter
Dennis Allison wrote at 2006-2-8 11:16 -0800:
The problem we see is a sudden disappearance of all, one, or a small
number of session variables.
You already reported this and I replied that it is virtually
impossible to lose part of the session variables:
The session container is a
Garikoitz Araolaza [EMAIL PROTECTED] has discovered a
vulnerability in Squishdot that can result in a Squishdot Site being
used to send spam.
Full discussion and a fix can be found here:
http://www.squishdot.org/1139510883
cheers,
Chris
--
Simplistix - Content Management, Zope Python
Thanks for the help. I got some good Apache advice on the Plone list vis avis locationWhat I'd like to do is have Apache and Zope (roles, workflow) for extrasecurity over SSL. I'll re-visit the authentication issue with the help I've received.
On 2/9/06, michael nt milne [EMAIL PROTECTED] wrote:
On 1/10/06, Gabriel Genellina [EMAIL PROTECTED] wrote:
At Monday 9/1/2006 12:15, Brian Sullivan wrote:
I am involved in maintaining a remote Zope site that is behind a
firewall where I have no remote access.
I have a (parallel) site that I use to test changes and upgrades that
is
I am Zope newbie so please bear with me. As a part of my job I just inherited control of an extremely old Zope server running on FreeBSD. I would like to move to a new instance of Zope runninf on Windows Server 2003. So basically I need help transferring all the data from the old box to the new
Chris Withers wrote:
michael nt milne wrote:
Over and out on this one from me
You promise? ;-)
Chris
I think Tino made the key suggestion earlier on: log out of the ZMI,
close your browser, restart it, clear the cache, clear any saved
passwords, try to view the page in question and - if
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Peter Evans wrote:
I am Zope newbie so please bear with me. As a part of my job I just
inherited control of an extremely old Zope server running on FreeBSD. I
would like to move to a new instance of Zope runninf on Windows Server 2003.
So
Hello Zope,
Is it true that even though a user Role like 'author' is defined at zope
root that users defined lower in the hierarchy *also* with role
'author' cannot access objects at root with role 'author' and
permissions of view and access?
The online zope book seems to say so.
If
Hello,
I am observing a strange problem when trying to use
MKCOL WebDAV method with a specific url. I can
reproduce it with two WebDAV clients: Jakarta
Slides[1] and the command-line client nd[2].
The problem: Invoking MKCOL method against Zope's
WebDAV server with an url ending with title
Ivan Rambius Ivanov wrote:
Hello,
I am observing a strange problem when trying to use
MKCOL WebDAV method with a specific url. I can
reproduce it with two WebDAV clients: Jakarta
Slides[1] and the command-line client nd[2].
The problem: Invoking MKCOL method against Zope's
WebDAV server
--On 9. Februar 2006 19:44:37 -0800 David [EMAIL PROTECTED] wrote:
Hello Zope,
Is it true that even though a user Role like 'author' is defined at zope
root that users defined lower in the hierarchy *also* with role 'author'
cannot access objects at root with role 'author' and permissions
Hi there,
I worked on a Zope-2.9 branch of off the CVS HEAD for zasync this week.
It over there:
http://svn.nuxeo.org/trac/pub/browser/vendor/zasync/branches/z29-nux/
The customer is currently testing out an application using it so it's
supposed to work.
What remains to be done is porting the
On Feb 9, 2006, at 9:38 AM, Julien Anguenot wrote:
Hi there,
I worked on a Zope-2.9 branch of off the CVS HEAD for zasync this
week.
It over there:
http://svn.nuxeo.org/trac/pub/browser/vendor/zasync/branches/z29-nux/
awesome!
The customer is currently testing out an application using
Gary Poster wrote:
I worked on a Zope-2.9 branch of off the CVS HEAD for zasync this week.
It over there:
http://svn.nuxeo.org/trac/pub/browser/vendor/zasync/branches/z29-nux/
awesome!
The customer is currently testing out an application using it so it's
supposed to work.
What remains
Hi,
How to run a webstie using these ReST files ?
http://codespeak.net/svn/z3/zopeweb/trunk/
I think worldcookery.com and tiks.org are running using ReST and Zope 3.
Are we planning to use any of these?
Thanks,
Baiju M
___
Zope-web maillist -
baiju m wrote:
Hi,
How to run a webstie using these ReST files ?
http://codespeak.net/svn/z3/zopeweb/trunk/
I think worldcookery.com and tiks.org are running using ReST and Zope 3.
Are we planning to use any of these?
Some thoughts on what you could do localy with the SVN checkout ::
Tonico Strasser wrote:
IMHO, the most important change for reducing visual design complexity,
is to get rid of the /Members section, including log in/log out, and the
whole TTW content management system.
I think it's much easier to add and update content with SVN. (This would
also
Chris Withers wrote:
Tonico Strasser wrote:
IMHO, the most important change for reducing visual design
complexity, is to get rid of the /Members section, including log
in/log out, and the whole TTW content management system.
I think it's much easier to add and update content with SVN.
On 2/9/06, Martijn Faassen [EMAIL PROTECTED] wrote:
I'm still hopeful we can at least swap out zope.org's frontpage and
initial pages with something better that describes both Zope 2, Zope 3,
and its relationship. Quite a bit of text is already written that
attempts that which is in codespeak
On 2/9/06, Andrew Sawyers [EMAIL PROTECTED] wrote:
On Thu, 2006-02-09 at 14:28 +0100, Lennart Regebro wrote:
But other than that, I think we should
focus on having a zope3.org.
A zope.org and zope3.org?
Yup.
--
Lennart Regebro, Nuxeo http://www.nuxeo.com/
CPS Content Management
On Thu, 09 Feb 2006 13:00:43 -, Chris Withers [EMAIL PROTECTED]
wrote:
Tonico Strasser wrote:
IMHO, the most important change for reducing visual design complexity,
is to get rid of the /Members section, including log in/log out, and
the whole TTW content management system.
I think
On Thu, 09 Feb 2006 08:03:49 +0100, Andreas Jung [EMAIL PROTECTED]
wrote:
And btw. _learn_ how to post. Sending a three line posting as a 44 KB
large mail containing html and lots of
images is only _disgusting_. If you do expect help from community then
stick to their basic rules.
The
G E R R I T wrote at 2006-2-9 10:01 +0800:
How I can connect MySQL database from my zope web project?
Read the relevant chapter in the Zope Book (2.7 editon, online).
BTW: Why to you attach an image when you post to a technical newsgroup?
--
Dieter
1. HowI can connect MySQL database? (G E R R I T)Please follow this tutorial, it helps to connect zope/Plone with MySQL.
http://www.mooball.com/hornet/quickstart.html
thankx,
bh
___
Zope-DB mailing list
Zope-DB@zope.org
I'm running Python 2.3.5, Zope 2.8.4, and Plone 2.1.1.
I installed Hornet and was able to connect to the MySQL
database, such that in ZMI I can see the tables and their
content. In Plone however, I don't see any folders in
the Hornet Mount Point. I can get the individual rows
to display inside
43 matches
Mail list logo
