On 5/16/06, Cliff Ford <[EMAIL PROTECTED]> wrote:
So I still wonder if anyone who is ising the REMOTE_USER environment
variable is aware of a problem and has a solution.


Environment-related variables should not be "hackable" from restricted
code. Please file a report in de Zope Collector:

 http://www.zope.org/Collectors/Zope

You'll need to log in (create a Zope.org account if you don't yet have
one), and make sure you check the 'security related' tickbox.

Thanks,

--
Martijn Pieters
_______________________________________________
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope-dev )

Reply via email to