ColdFusion Security Essentials Slides Posted

4 responses to “ColdFusion Security Essentials Slides Posted”

  1. Eddie Awad Avatar
    Eddie Awad

    Good resource. It is amazing to me how many people leave their ColdFusion Administrator wide open and only protected by a password. I always restrict the /cfide/administrator folder to specific (internal) IP addresses.
    Note: I had no problem browsing
    Thank you —

  2. Ben Forta Avatar
    Ben Forta

    Yeah, I wondered who’d be the first to point that out. Cobblers children. 🙂

  3. Greg Avatar

    I see in your slides that you are extolling the security history of CF. While that may be true, I just reported a HUGE DoS problem that the QA team and dev teams already know about, in 6.1 and 7.
    Hope they get it fixed soon.

  4. Lola Avatar

    Greg, but a DOS is unpreventable, that’s why it is called DOS…lol…

Leave a Reply