[TYPO3-core] RFC: #15812: Add backend maintenance for login news

Helmut Hummel helmut at typo3.org
Thu Oct 7 14:07:40 CEST 2010


Hi,

Am 07.10.2010 13:58, schrieb Marcus Krause:
>
> It's funny to read these discussions.

I find nothing funny about it.

> IMHO, any user (admins too) should have the least necessary permissions.
>
> A new feature should reflect that from the beginning.
>
> Then, there could be a discussion why it's necessary to extend
> permissions  - and you should bring pretty good arguments.
>
> Sadly, it's usually the other way: start with god mode
> And security-focused people need to fight strong to drop permissions.

This is not the case here. We discussed it, and it was implemented securely.

Now the question is how we can extend the _featureset_ of what was 
implemented in a good way. If we can do this without extending 
permissions; good. If not, we must decide if it is worth to extend the 
featureset.

I personally never used that feature and plain text would be enough for 
me. So I like the way it is implemented now. But I'm not the only one 
using TYPO3, am I? ;)

Regards Helmut


More information about the TYPO3-team-core mailing list