Most "security issue" in ColdFusion are problems with IIS not ColdFusion or
problems in standard security. There have been a couple of exceptions (the
Expression Evaluator and samples mostly), but most are not the fault of CF.
If he is comparing PHP on Unix to CF on NT, it's not really a fair
comparison, is it?
As for cost. The cost of a few days extra time programming nearly covers the
application.
Why don't you ask him about these security issues??? What are they ? Is he
talking about webserver or system security? Or CF ?
And before I get into a flame war here, I do use PHP ,and Perl, C/C++, Java
(JRun is great BTW )and CF others , NT and *nix. I prefer do prefer PHP for
some stuff (can't wait for cfscript to get better ), and with Zope it's
very fast but CF is cool too, and I've been using it since CF V1.5ish with
success. Why stop now?
~J
>>However, in the corporate IT department, CF is usually not an
>> option due to cost and security problems. I realize that changing
>> perceptions and old habits are sometimes difficult, but necessary.
>> Especially in our industry (high-tech).
>>
>> The need to deliberate the issue further is a mute point."
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
