Details
-
Suggestion
-
Resolution: Unresolved
-
16
-
Description
NOTE: This suggestion is for Confluence Cloud. Using Confluence Server? See the corresponding suggestion.
Problem Definition
After enabling "view" in Space permissions for anonymous users, they are able to view the Overview, Content Tools and Activity section of a Space.
Suggested Solution
These options must not be available for Anonymous Users, the Overview screen, for instance, clearly gives away all the Admin users of a space, allowing malicious attackers to identify admin user accounts to target.
Why this is important
Security issues.
Attachments
Issue Links
- is related to
-
CONFSERVER-45397 Hide Overview,Content tools and Activity from Anonymous users
- Closed