Backport site data - clean

Moving my site data (postgres + blobs) backwards from PROD to DEV is great, but how can I easily incorporate a step to remove all the CMS user and admin accounts (as a security measure)?

The security flaw is that if someone gets a hold of the data and blobs off a DEV's machine, they could spin up the copy of the PROD site, and brute force user/pass until they gain access... which will then be relevant to the live PROD site.

You may find this package helpful: https://pypi.python.org/pypi/isotoma.plone.defang/1.0.2

1 Like

Well thank you Mr Bain... if it works as advertised it's perfect!