What do you mean by end user? An anonymous website visitor without username/password? I think that's safe. <br>
<br>
However a CMS user who can author JSP files will have full access to
everything by default. I have seen very little discussion on security
so I really don't know what is or is not safe.<br>
<br>
Any comments?<br>
<br>
Joe.<br>
<br><br><div><span class="gmail_quote">On 12/29/05, <b class="gmail_sendername"><a href="mailto:vijayanand.kalyanaraman@wipro.com">vijayanand.kalyanaraman@wipro.com</a></b> <<a href="mailto:vijayanand.kalyanaraman@wipro.com">
vijayanand.kalyanaraman@wipro.com</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div>
<p><font face="Arial" size="2"><span style="font-size: 10pt; font-family: Arial;">Hi all</span></font></p>
<p><font face="Arial" size="2"><span style="font-size: 10pt; font-family: Arial;">Is it possible for end user to break into OpenCMs Work Place?</span></font></p>
<p><font face="Arial" size="2"><span style="font-size: 10pt; font-family: Arial;">I am giving the user the URL for the developed application say
(<a href="http://ipaddress/abcd/efgh/xxxx/index.html" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">http://ipaddress/abcd/efgh/xxxx/index.html</a>
)</span></font></p>
<p><font face="Arial" size="2"><span style="font-size: 10pt; font-family: Arial;">Is there any means/configuration by which we can make sure
the OpenCMS Work Place
to be highly secure and fool proof?</span></font></p>
<p><font face="Arial" size="2"><span style="font-size: 10pt; font-family: Arial;"> </span></font></p>
<p><font face="Arial" size="2"><span style="font-size: 10pt; font-family: Arial;">Warm Regards</span></font></p>
<p><font face="Arial" size="2"><span style="font-size: 10pt; font-family: Arial;">Vijay</span></font></p>
</div>
<table><tbody><tr><td bgcolor="#ffffff"><font color="#000000"><br>
The information contained in this electronic message and any
attachments to this message are intended for the exclusive use of the
addressee(s) and may contain proprietary, confidential or privileged
information. If you are not the intended recipient, you should not
disseminate, distribute or copy this e-mail. Please notify the sender
immediately and destroy all copies of this message and any attachments.
<br>
<br>
WARNING: Computer viruses can be transmitted via email. The recipient
should check this email and any attachments for the presence of
viruses. The company accepts no liability for any damage caused by any
virus transmitted by this email.<br>
<br>
<a href="http://www.wipro.com" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">www.wipro.com</a><br>
</font></td></tr></tbody></table>
<br><br>_______________________________________________<br>This mail is sent to you from the opencms-dev mailing list<br>To change your list options, or to unsubscribe from the list, please visit<br><a onclick="return top.js.OpenExtLink(window,event,this)" href="http://lists.opencms.org/mailman/listinfo/opencms-dev" target="_blank">
http://lists.opencms.org/mailman/listinfo/opencms-dev</a><br><br></blockquote></div><br>