On Wed, 21 Jun 2006 11:39:42 -0500 "Disco Stu" <mailstu@xxxxxxxx> wrote: > Has anyone else had the issue with setting ACL permissions within > acl.auth.php, where if a name coincidentally contains another persons > name they will also have access to that namespace. > > e.g. > > The user "ANNEW", will see content specified for "LEANNEW"... I just tried to reproduce this, but couldn't. Which release do you use? > I am quite certain this lies with the function get_acl_config in > admin_acl.php on line 61 Hmm this file shouldn't even be there anymore because it is no longer used. The ACL manager is implemented as a plugin now. I just pushed a patch to remove the file from the distribution. Andi PS: please subscribe to the list or I have to manually approve each of your posts.