You are not logged in Log in Join
You are here: Home » Members » Tres Seaver's Zope.org Site » Zope Security Audit
Log in
Name

Password

 
Link icon Forgot your password?
 
Print

Folder icon Zope Security Audit

Zope's fine-grained security model is powerful, but hard to manage. This tool gives the system administrator an overview of the security status of the site, by searching for "exceptions" to the default / acquired behavior. In particular, it flags all objects which meet have any of these criteria:

  • Local role assigments;
  • Proxy roles;
  • Overridden permission mappings;
  • Executable ownership which differes from the ownership of the 'aq_parent';
  • Owner local roles which don't include the executable owner (leave out System Processes for unowned).

The product includes a screenshot showing a sample report.

 Title   Type   Size   Modified   Status 
 README Edit object Document 3 K 2005-10-24 published
 Screenshot Edit object Image 38 K 2001-03-11 published
 Zope Security Audit 0.2 Edit object Software Release   2005-08-30 published
 Zope Security Audit 0.3 Edit object Software Release   2001-06-04 published
 Zope Security Audit Script Released Edit object News Item 2 K 2001-03-11 published
 ZopeSecurityAudit-1.0 Edit object Software Release   2005-10-20 published
Copyright (c) 2011 Zope Foundation. All rights reserved. Legal | Contact
If you can read this text, it means you are not experiencing the Plone design at its best. Plone makes heavy use of CSS, which means it is accessible to any internet browser, but the design needs a standards-compliant browser to look like we intended it. Just so you know ;)