Very comforting ... I'm sure CT would have a similar response.... maybe its time to get a dedicated box
-----Original Message----- From: James Holmes [mailto:[EMAIL PROTECTED] Sent: Wednesday, May 18, 2005 5:56 AM To: CF-Talk Subject: RE: Shared CF Host security Two of us have approached HMS so far and I got the usual rubbish about "it's shared hosting so tough." They aren't going to fix it. -----Original Message----- From: Tim Laureska [mailto:[EMAIL PROTECTED] Sent: Wednesday, 18 May 2005 5:39 To: CF-Talk Subject: RE: Shared CF Host security Has anyone approached Crystaltech or Host My Site directly about this problem? -----Original Message----- From: James Holmes [mailto:[EMAIL PROTECTED] Sent: Wednesday, May 18, 2005 4:10 AM To: CF-Talk Subject: RE: Shared CF Host security Quite right, with properly configured local accounts and JSP disabled, no datasource sandboxing is necessary if the access details are in the code and not saved in the Admin. -----Original Message----- From: Jochem van Dieten [mailto:[EMAIL PROTECTED] Sent: Wednesday, 18 May 2005 4:07 To: CF-Talk Subject: Re: Shared CF Host security James Holmes wrote: > > A reasonable attempt at security would entail disabling JSP, disabling > CFOBJECT/createObject() and sandboxing datasources and files. Or just sandboxing files and not setting datasource passwords in the administrator. Jochem ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Find out how CFTicket can increase your company's customer support efficiency by 100% http://www.houseoffusion.com/banners/view.cfm?bannerid=49 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:207012 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
