Lol-- Splitting hairs on technical verbiage are we?
Call it what you want, but I prefer to see my database as a sort of
server-superhero who's spider sense tingles when I make more than 6
modifications to a temporary table inside my stored procs.
Hmm, all this talk of procs, prepared
Porter, Benjamin L. wrote:
When you use cfqueryparam the statement that gets compiled uses
sp_prepexec.
For which driver and which MS SQL Server version did you observe this?
Jochem
~|
Get involved in the latest ColdFusion
That's the route I ended up taking, which is why I was asking about
selectonload. Turns out you were right -- a little embarrassing, but it
turns out my local machine did have a beta version. I updated this morning
and it works fine.
On 8/11/07 12:41 AM, Brian Kotek [EMAIL PROTECTED] wrote:
So, hands up all those who do *not* have this excellent CF site as their
homepage?
http://www.coffeereview.com/
Shame on you! What could be more perfect - CF and coffee?
Damien McKenna
Web Developer
The LIMU Company
~|
Did you add theme_advanced_buttons3_add : template or similar?
On 8/11/07, Jake Churchill [EMAIL PROTECTED] wrote:
Anyone on this??? Anyone at all? Sorry if this is off topic but I'm sure
there are coldFusion people using various WYSIWYG editors. Just hoping that
someone uses tinyMCE.
Lol-- Splitting hairs on technical verbiage are we?
Not at all.
Call it what you want, but I prefer to see my database as a
sort of server-superhero who's spider sense tingles when I
make more than 6 modifications to a temporary table inside
my stored procs.
You can prefer to see your
So, hands up all those who do *not* have this excellent CF site as their
homepage?
http://www.coffeereview.com/
Shame on you! What could be more perfect - CF and coffee?
Shame on them. They need better error handling. :)
http://www.coffeereview.com/allreviews.cfm?search=aaa
Not I.. hate coffee
On 8/11/07, Will Tomlinson [EMAIL PROTECTED] wrote:
So, hands up all those who do *not* have this excellent CF site as their
homepage?
http://www.coffeereview.com/
Shame on you! What could be more perfect - CF and coffee?
Shame on them. They need better error
better error handling and the use of cfqueryparam.. Prime candidate
for SQL injection..
On 8/11/07, Greg Morphis [EMAIL PROTECTED] wrote:
Not I.. hate coffee
On 8/11/07, Will Tomlinson [EMAIL PROTECTED] wrote:
So, hands up all those who do *not* have this excellent CF site as their
Not I.. hate coffee
I'd likely shrivel up and die without my daily cups of starbucks.
they need some cfqueryparam's on that site too...
~|
ColdFusion 8 - Build next generation apps
today, with easy PDF and Ajax features -
Hey Will,
Your email has been bouncing and your domain expired back on the 7th. :-(
Bill
-Original Message-
From: Will Tomlinson [mailto:[EMAIL PROTECTED]
Sent: August 11, 2007 2:58 PM
To: CF-Talk
Subject: Re: The first CF site on everyone's mind
Not I.. hate coffee
I'd likely
Hi I'm trying to figure out how I can encrypt or hide the jsessionid value
because as it stands with firefox and the webdeveloper add on, it can be found
in a number of seconds and then exploited by some man in the middle hacker. Iv
turned off clientmanagement/clientcookies, but it is still
Phil Wilson wrote:
Hi I'm trying to figure out how I can encrypt or hide the jsessionid value
because as it stands with firefox and the webdeveloper add on, it can be
found in a number of seconds and then exploited by some man in the middle
hacker.
You should encrypt it with TLS.
Jochem
Have you turned off Use J2EE session variables in the administrator?
On 8/11/07, Phil Wilson [EMAIL PROTECTED] wrote:
Hi I'm trying to figure out how I can encrypt or hide the jsessionid value
because as it stands with firefox and the webdeveloper add on, it can be
found in a number of
What is TLS? Sorry for my ignorance. A quick google on it suggested it is to do
with SSL, which i have setup for this app. My thinking has been that with SSL
in place the transfer of the value from server to browser and back should be
protected, but when viewing the jsessionid cookie from the
No, as I'd like to use j2ee sessions, but either hide or encrypt jsessionid
from prying eyes. It's very possible what i'm trying to do doesn't make sense i
guess, i'm quite the noob, but if it doesn't i'd be grateful if you can help me
understand why?
Have you turned off Use J2EE session
If the hacker had physical access to the machine, how would it matter
whether the jsessionid was encrypted or not?
On 8/11/07, Phil Wilson [EMAIL PROTECTED] wrote:
What is TLS? Sorry for my ignorance. A quick google on it suggested it is
to do with SSL, which i have setup for this app. My
heh well I can't fault that logic slaps forehead
Thanks for the common sense that I lost somewhere over the last few hours.
forehead slap again
If the hacker had physical access to the machine, how would it matter
whether the jsessionid was encrypted or not?
Phil Wilson wrote:
What is TLS? Sorry for my ignorance. A quick google on it suggested it is to
do with SSL, which i have setup for this app.
It is. And if you have it set up you are safe from the man in the middle
attack you were asking about.
My thinking has been that with SSL in place
To be honest, as a noob, there's a bunch of things that I don't know that I
don't know. Unconcious incompetence. In this instance I saw a session id value
and thought it best to encrypt it, because perhaps there was a way that I
didn't know about that this could be exploited, especially since
Yeah even if you encrypt it, if someone sniffs the connection and gets the
encrypted value, they can pass that the same way they would pass the normal
jsessionid. In other words, it doesn't make any difference. Maybe you could
salt the id with their IP address or something but then you could run
I am playing around with my new coldfusion 8 install. I am trying to use Ben
Forta's example to bind data from two of my cfc's. But for some reason, my
tests don't work at all. It does not populate any of the inputs and gives no
errors
Here is the code I am using
test.cfm
cfform
table
tr
What do you see in Firebug? I cannot stress enough (and this it to
_everyone_ who is playing with Ajax for the first time) the CRITICAL
important of Firebug. it lets you see the Ajax requests and what they
are returning.
Now if I had to guess - I'd bet that this.dsn doesn't equal anything
as I
Interestingly, not all the search engines pay attention to robots.txt.
Library of Congress uses Archive.org, and they were throwing a lot of errors
on my site by pulling up pages without url parameters, even though those
pages were in my robots.txt. I finally got a hold of someone there and they
Hey Will,
Your email has been bouncing and your domain expired back on the 7th. :-(
Bill
Shoot me an email Bill. It's back up.
Thanks,
Will
~|
Enterprise web applications, build robust, secure
scalable apps today - Try
Yes, the button is in the editor and when I click it the popup.htm file
displays. I've changed that to be a popup.cfm and verified it works. What I'm
confused on is how do I get what I want inserted back into the editor?
Jake
Original Message ---
Did you add
Interestingly, not all the search engines pay
attention to robots.txt.
Google does, however.
Dave Watts, CTO, Fig Leaf Software
~|
ColdFusion 8 - Build next generation apps
today, with easy PDF and Ajax features - download
What do you see in Firebug? I cannot stress enough (and this it to
_everyone_ who is playing with Ajax for the first time) the CRITICAL
important of Firebug. it lets you see the Ajax requests and what they
are returning.
Now if I had to guess - I'd bet that this.dsn doesn't equal anything
as I
On 8/11/07, Will Tomlinson [EMAIL PROTECTED] wrote:
Not I.. hate coffee
I'd likely shrivel up and die without my daily cups of starbucks.
they need some cfqueryparam's on that site too...
The same could happen if you drink too much starbucks.
Gulp down 42.81 cups of Starbucks Tall
Hmm, it was my understanding you returned a query for selects.
According to the docs - I'm half right. You can return a query, or a
2D array. It does not say you can return an AoS.
On 8/11/07, Jeremy Rottman [EMAIL PROTECTED] wrote:
What do you see in Firebug? I cannot stress enough (and this it
Experienced ColdFusion Developers.
Find out more by sending your resume to [EMAIL PROTECTED]
DealerPeak
[EMAIL PROTECTED]
~|
ColdFusion 8 - Build next generation apps
today, with easy PDF and Ajax features - download now
31 matches
Mail list logo