Comments on: Plone and Zope Security http://jstahl.org/archives/2006/07/22/plone-and-zope-security/ Politics, the environment, technology, activism. And stuff. Tue, 09 Mar 2010 13:40:40 -0800 http://wordpress.org/?v=2.9.2 hourly 1 By: dudeWithACar http://jstahl.org/archives/2006/07/22/plone-and-zope-security/comment-page-1/#comment-334746 dudeWithACar Tue, 17 Jul 2007 01:25:27 +0000 http://blogs.onenw.org/jon/archives/2006/07/22/plone-and-zope-security/#comment-334746 <p>I know of one security breach of a zope server. And actually, it was just a case of leaving the door wide open. It was in production(though probably shouldn't have been). What had happened was they used an installer where the username:password combo was admin:admin and the attacker either guessed or used a dictionary and then defaced the site.</p> I know of one security breach of a zope server. And actually, it was just a case of leaving the door wide open.
It was in production(though probably shouldn’t have been).
What had happened was they used an installer where the username:password combo was admin:admin and the attacker either guessed or used a dictionary and then defaced the site.

]]> By: Jon Stahl’s Journal » Blog Archive » Open Source CMS Security, Part II http://jstahl.org/archives/2006/07/22/plone-and-zope-security/comment-page-1/#comment-197476 Jon Stahl’s Journal » Blog Archive » Open Source CMS Security, Part II Sun, 18 Feb 2007 08:17:52 +0000 http://blogs.onenw.org/jon/archives/2006/07/22/plone-and-zope-security/#comment-197476 <p>[...] Last summer, I did a quick count of the number of known security vulnerabilities in common open-source CMS products, and their underlying software stacks. The results were rather eye-opening. [...]</p> [...] Last summer, I did a quick count of the number of known security vulnerabilities in common open-source CMS products, and their underlying software stacks. The results were rather eye-opening. [...]

]]> By: Jon Stahl http://jstahl.org/archives/2006/07/22/plone-and-zope-security/comment-page-1/#comment-88040 Jon Stahl Tue, 25 Jul 2006 21:33:25 +0000 http://blogs.onenw.org/jon/archives/2006/07/22/plone-and-zope-security/#comment-88040 <p>Fixed, thanks, Skeeter.</p> Fixed, thanks, Skeeter.

]]> By: skeeter http://jstahl.org/archives/2006/07/22/plone-and-zope-security/comment-page-1/#comment-87995 skeeter Tue, 25 Jul 2006 16:55:54 +0000 http://blogs.onenw.org/jon/archives/2006/07/22/plone-and-zope-security/#comment-87995 <p>Though Zope/Plone are doing well with security, apparently my older Quills blog is not doing so well with posting trackbacks.... ;o)</p> <p>Since I logged in with https, the trackback used an https link...</p> <p>Here's a link that should work....</p> <p>http://castlemurphy.com/blog/archive/2006/07/25/plone-and-zope-security</p> Though Zope/Plone are doing well with security, apparently my older Quills blog is not doing so well with posting trackbacks…. ;o)

Since I logged in with https, the trackback used an https link…

Here’s a link that should work….

http://castlemurphy.com/blog/archive/2006/07/25/plone-and-zope-security

]]> By: Jon Stahl http://jstahl.org/archives/2006/07/22/plone-and-zope-security/comment-page-1/#comment-87892 Jon Stahl Tue, 25 Jul 2006 06:39:20 +0000 http://blogs.onenw.org/jon/archives/2006/07/22/plone-and-zope-security/#comment-87892 <p>Fascinating.... thanks for sharing, Skeeter.</p> Fascinating…. thanks for sharing, Skeeter.

]]> By: blog http://jstahl.org/archives/2006/07/22/plone-and-zope-security/comment-page-1/#comment-87876 blog Tue, 25 Jul 2006 04:53:50 +0000 http://blogs.onenw.org/jon/archives/2006/07/22/plone-and-zope-security/#comment-87876 <p><strong>Plone and Zope Security</strong></p> <p>My resonse to Jon Stahl's post of the same title. I count Nessus Plugins and come up with about the same stats. Short version, Zope and Plone are doing well regarding security.</p> Plone and Zope Security

My resonse to Jon Stahl’s post of the same title. I count Nessus Plugins and come up with about the same stats. Short version, Zope and Plone are doing well regarding security.

]]>