Give the gift of Drupal. All merchandise is 50% off through 2016.
As a follow up to the Content Access issue:
Content Access attempts to optimize node grants where possible, but runs into problems when the 'Non-authenticated role' LoginToboggan option is used. If a content type has view permissions granted to the Authenticated and Non-authenticated roles it will erroneously optimize away the Non-authenticated role, since it treats the Authenticated role as a superset of all other user-defined roles.
The mentioned issue contains a patch for LoginToboggan to implement a hook which specifies to Content Access that the Non-authenticated role, if defined, requires special treatment.