> you can write anything destructive, whether it is an external method, a
> Method, or basically anything.  At least if the only way you can import
> is from the import directory, then only people with access to the zope
> structure can import stuff...that will usually be restricted to system
> administrators or superuser people.

But if there was a Can Import From Web role than you could control who
could import and who couldn't. Granular Security is a strong point of Zope.
We should strive to use it.

Zope maillist  -  [EMAIL PROTECTED]
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://lists.zope.org/mailman/listinfo/zope-dev )

Reply via email to