Details
-
Suggestion
-
Resolution: Won't Do
-
None
-
None
Description
NOTE: This suggestion is for Confluence Server. Using Confluence Cloud? See the corresponding suggestion.
Problem Definition
After enabling "view" in Space permissions for anonymous users, they are able to view the Overview, Content Tools and Activity section of a Space.
Suggested Solution
These options must not be available for Anonymous Users, the Overview screen, for instance, clearly gives away all the Admin users of a space, allowing malicious attackers to identify admin user accounts to target.
Why this is important
Security issues.
Attachments
Issue Links
- relates to
-
CONFCLOUD-45397 Hide Overview,Content tools and Activity from users
- Gathering Interest