Comment 3 for bug 1013236

The problem is that once the system is setup, there should be a way to disable (e.g. an option) that so that it cannot be accessed by anyone other than the administrator after login. Or some configuration option to just disable it altogether and then the admin can re-enable it if needed at a later time - editing a conf file, restarting openerp, etc.