There are lots of folks out there who would love to hack into your site (often to steal content, or just to make your life a misery). Hackers break into hosts by trying to learn as much about the OS and software begin used, the more they can determine about your environment, the easier it is for them to break in. Standard ColdFusion error pages provide all sorts of information about your application and server, possibly even SQL statements and ODBC information (if enabled in the CF Administrator). The less people know about your server and application, the better. So use and / to better control error screens, and don’t turn on detail error messages on production machines. (Applies to: ColdFusion All)

2 thoughts

Leave a Reply