[development] with anonymous user able to edit nodes
Ken Winters
kwinters at coalmarch.com
Wed Jul 21 12:24:35 UTC 2010
I'd start with a diff of a fresh core download (of the correct
version) and your site.
If the server was compromised, anything is possible.
Next step: start disabling modules to narrow down the problem.
- Ken Winters
On Jul 21, 2010, at 8:16 AM, Idan Arbel wrote:
> Yes, possative...really strange...and I'm getting spammed because
> anyone can
> edit that content.
>
> Idan
>
> -----Original Message-----
> From: development-bounces at drupal.org [mailto:development-bounces at drupal.org
> ]
> On Behalf Of Paolo Mainardi
> Sent: Wednesday, July 21, 2010 3:07 PM
> To: development at drupal.org
> Subject: Re: [development] with anonymous user able to edit nodes
>
> Are you sure that $node->uid is > 0 ?
>
> On Wed, Jul 21, 2010 at 1:13 PM, Idan Arbel <idan at arbel-designs.com>
> wrote:
>> Hello,
>>
>>
>>
>> I have strange critical issue with anonymous user being able to edit
> nodes.
>>
>> I have nodes created by anonymouse users (created using node
>> import) and
>> any anonymous user can edit them.
>>
>>
>>
>> in the permissions anonymous user don't have permissions to edit
>> anything.
>>
>>
>>
>> Idan
>
>
>
> --
> Paolo Mainardi
>
> CTO Twinbit
> Blog: http://www.paolomainardi.com
>
> -- Please consider the environment before printing this email --
>
More information about the development
mailing list