Re: [Zope-dev] Allowing secure 'import' access in zope folder hosting

2001-04-21 Thread Zopista

 Just a random, related thought that came up: Wouldn't it be nice
 if people could devellop locally on their own zope (under windows
 or unix) and hit the 'Sync' button on their "SyncedFolder" to
 transparently upload their work to the zope server where it becomes
 live immediately? (ok, this wouldn't work for external databases)

 Just a thought. I know it doesn't cover all situations and there are
 other ways to do this (next to just developping remotely using versions).

I have a system that does that now using xml-rpc. Im trying to turn it into
a product so I can get release it. It can be a big security headache

--
  Andy McKay



___
Zope-Dev maillist  -  [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope-dev
**  No cross posts or HTML encoding!  **
(Related lists - 
 http://lists.zope.org/mailman/listinfo/zope-announce
 http://lists.zope.org/mailman/listinfo/zope )



[Zope-dev] Allowing secure 'import' access in zope folder hosting

2001-04-20 Thread Ivo van der Wijk

Hi all,

I tried to ask this on the standard zope list, but noone seemed to know
anything about it. Perhaps you do?

We provide zope hosting, both folder based (where people have access
to their own folder, mapped to a domain, and no access to the zope 
server / source / var / import / lib directories) and pure zope hosting
(i.e. an entire own zope server for this customer)

In the folder case, one of our customers whishes to upload his locally
developped site as .zexp to our zope server and import it there.

Can this be done safely? I.e. withouth compromising the other customers
security?

From some discussions where had on #zope I understand that expecialy 
proxy roles may be a problem which may be fixed by requiring the user
to take ownership.

Would this fix all security issues? Or are there any other unforseen problems?

Would anyone know another solution to achieve the same functionality?
(ftp won't work, as you can't, for example, upload userfolders)

Would it be possible to perform a scan on an xml exports for unwanted 
proxy roles and other security issues?

Thanks,

Ivo

-- 
Drs. I.R. van der Wijk  -=-
Brouwersgracht 132  Amaze Internet Services V.O.F.
1013 HA Amsterdam   -=-
Tel: +31-20-4688336   Linux/Unix based corporate   
Fax: +31-20-4688337 and   
Web: http://www.amaze.nl/Internet Solutions   
Email:   [EMAIL PROTECTED]   -=- 


___
Zope-Dev maillist  -  [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope-dev
**  No cross posts or HTML encoding!  **
(Related lists - 
 http://lists.zope.org/mailman/listinfo/zope-announce
 http://lists.zope.org/mailman/listinfo/zope )



Re: [Zope-dev] Allowing secure 'import' access in zope folder hosting

2001-04-20 Thread Shane Hathaway

Ivo van der Wijk wrote:
 I tried to ask this on the standard zope list, but noone seemed to know
 anything about it. Perhaps you do?
 
 We provide zope hosting, both folder based (where people have access
 to their own folder, mapped to a domain, and no access to the zope
 server / source / var / import / lib directories) and pure zope hosting
 (i.e. an entire own zope server for this customer)
 
 In the folder case, one of our customers whishes to upload his locally
 developped site as .zexp to our zope server and import it there.

 Can this be done safely? I.e. withouth compromising the other customers
 security?

No.  It's not just difficult, but with zexp it's not possible.

 
 From some discussions where had on #zope I understand that expecialy
 proxy roles may be a problem which may be fixed by requiring the user
 to take ownership.
 
 Would this fix all security issues? Or are there any other unforseen problems?
 
 Would anyone know another solution to achieve the same functionality?
 (ftp won't work, as you can't, for example, upload userfolders)
 
 Would it be possible to perform a scan on an xml exports for unwanted
 proxy roles and other security issues?

There are infinite ways to plant a security hole in a .zexp.

What you're really looking for is a different kind of import/export
format.  This is actually a great opportunity for a new product:
something that can import and export only specific kinds of objects and
can strip security-related attributes.  It could be web-enabled rather
than requiring filesystem access.

I guess the question is then "how badly do you want it"?  :-)

Shane

___
Zope-Dev maillist  -  [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope-dev
**  No cross posts or HTML encoding!  **
(Related lists - 
 http://lists.zope.org/mailman/listinfo/zope-announce
 http://lists.zope.org/mailman/listinfo/zope )



Re: [Zope-dev] Allowing secure 'import' access in zope folder hosting

2001-04-20 Thread Ivo van der Wijk

On Fri, Apr 20, 2001 at 05:29:51PM -0400, Shane Hathaway wrote:
 Ivo van der Wijk wrote:
  I tried to ask this on the standard zope list, but noone seemed to know
  anything about it. Perhaps you do?
  
  We provide zope hosting, both folder based (where people have access
  to their own folder, mapped to a domain, and no access to the zope
  server / source / var / import / lib directories) and pure zope hosting
  (i.e. an entire own zope server for this customer)
  
  In the folder case, one of our customers whishes to upload his locally
  developped site as .zexp to our zope server and import it there.
 
  Can this be done safely? I.e. withouth compromising the other customers
  security?
 
 
 What you're really looking for is a different kind of import/export
 format.  This is actually a great opportunity for a new product:
 something that can import and export only specific kinds of objects and
 can strip security-related attributes.  It could be web-enabled rather
 than requiring filesystem access.
 
 I guess the question is then "how badly do you want it"?  :-)
 

Just a random, related thought that came up: Wouldn't it be nice
if people could devellop locally on their own zope (under windows
or unix) and hit the 'Sync' button on their "SyncedFolder" to
transparently upload their work to the zope server where it becomes
live immediately? (ok, this wouldn't work for external databases)

Just a thought. I know it doesn't cover all situations and there are
other ways to do this (next to just developping remotely using versions).

Ivo

-- 
Drs. I.R. van der Wijk  -=-
Brouwersgracht 132  Amaze Internet Services V.O.F.
1013 HA Amsterdam   -=-
Tel: +31-20-4688336   Linux/Unix based corporate   
Fax: +31-20-4688337 and   
Web: http://www.amaze.nl/Internet Solutions   
Email:   [EMAIL PROTECTED]   -=- 

___
Zope-Dev maillist  -  [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope-dev
**  No cross posts or HTML encoding!  **
(Related lists - 
 http://lists.zope.org/mailman/listinfo/zope-announce
 http://lists.zope.org/mailman/listinfo/zope )