[Zope-Coders] bug in restrictedTraverse

[Shane Hathaway]

Jeremy Hylton wrote:
>>>>>>"SH" == Shane Hathaway <shane@zope.com> writes:
>>>>>
> 
>   SH> This can just raise Unauthorized with no exception value.
>   SH> AFAIK, however, no one will ever fail this security check, so
>   SH> this bug was never spotted.
> 
> Do you mean "It's really unlikely someone would configure their site
> so that this check would fail" or "It's impossible that this check
> would fail."  If the latter, we ought to just delete the entire if
> clause.

The former, although it's unlikely a site would work at all if it were 
configured in such a manner.  Remember the onion skin story you told a 
while back?  It may apply here. :-)

Shane