22:56
| To: CF-Talk
| Subject: RE: directory security
|
| My apologies.I meant to say IIS 5 server.
|
| I think I'll have to push the image content from a directory
| outside the web root, or, spend $$$ for something like
| Authentix.. bummer..
|
| -Original Message-
| From: Jochem van
it
will do exactly what you need. There's a free download and it works on IIS4+
Jb.
-Original Message-
From: Jeff Beer [mailto:[EMAIL PROTECTED]
Sent: 27 November 2003 21:56
To: CF-Talk
Subject: RE: directory security
My apologies.I meant to say IIS 5 server.
I think I'll have to push
Jeff Beer wrote:
On a unix box I can put a .htaccess file in an image subdirectory and have
it redirect image requests that don't originate from that server (referer).
Is there any way to do that on a windows 2000 platform?
Doesn't Apache offer the same functionality on Windows as on Unix?
PM
To: CF-Talk
Subject: Re: directory security
Jeff Beer wrote:
On a unix box I can put a .htaccess file in an image subdirectory and have
it redirect image requests that don't originate from that server
(referer).
Is there any way to do that on a windows 2000 platform?
Doesn't Apache offer
there is a performance hit. in my experience, it's negligible.
Chris Olive
DOHRS Website Administrator
[EMAIL PROTECTED]
-Original Message-
From: Dan O'Keefe [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, April 26, 2000 5:53 PM
To: [EMAIL PROTECTED]
Subject: RE: Directory Security
MacCarthy
- Original Message -
From: Olive, Christopher M Mr USACHPPM
[EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Thursday, April 27, 2000 3:37 PM
Subject: RE: Directory Security
there is a performance hit. in my experience, it's negligible.
Chris Olive
DOHRS Website Administrator
there is a performance hit. in my experience, it's negligible.
It's negligible except in high-load/high-availability scenarios, where the
CF request queueing bottleneck is a serious performance issue.
Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
voice: (202) 797-5496
fax: (202)
This would probably be solved by making the Mime type of the page a Cold
Fusion page.
Unfortunately I do not know the mime type, nor have I been able to find it.
jon
- Original Message -
From: "Wey Hueymeei" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Tuesday, April 25, 2000 10:07 AM
How would one go about having HTML requests go throught the CF dll?
Jeff
-Original Message-
From: Olive, Christopher M Mr USACHPPM
[SMTP:[EMAIL PROTECTED]]
Sent: Tuesday, April 25, 2000 10:27 AM
To: '[EMAIL PROTECTED]'
Subject: RE: Directory Security
one possible way
]
-Original Message-
From: Jeff Bartlett [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, April 25, 2000 12:45 PM
To: '[EMAIL PROTECTED]'
Subject: RE: Directory Security
How would one go about having HTML requests go throught the CF dll?
Jeff
-Original Message-
From: Olive, Christopher M
I have also been told by Allaire that they do not support this, for what it
is worth.
Dan
-Original Message-
From: Nick Call [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, April 26, 2000 11:33 AM
To: [EMAIL PROTECTED]
Subject: Re: Directory Security
Keep in mind that this may cause
process the page? My guess is not.
From: "Jon Hall" [EMAIL PROTECTED]
Reply-To: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: Re: Directory Security
Date: Tue, 25 Apr 2000 16:30:05 -0400
This would probably be solved by making the Mime type of the page a Cold
Fusion page.
Unfortun
would weigh in on this issue.
Chris Olive
DOHRS Website Administrator
[EMAIL PROTECTED]
-Original Message-
From: Dan O'Keefe [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, April 26, 2000 1:49 PM
To: [EMAIL PROTECTED]
Subject: RE: Directory Security
I have also been told by Allaire
You are correct that the application.cfm will only do it's security check on
cfm files. One way to handle your other files is to store them in a
directory path that is not underneath the web server's root. This will
prevent someone from putting in a direct path to the files. You can use
cffile
Why not make 2 passwords. One that does a check with the webserver when they
first enter the site, then the other one for all the pages. The first
password could just be something default, just so they can get to the point
where they can put in the rest of thier information. Only thing I can
That will be true of any files in the web space that don't have extensions
mapped to the CF engine. Place the upload directory outside of the web space so
that they cannot be retrieved by URL.
Jim
-Original Message-
From: Wey Hueymeei [EMAIL PROTECTED]
To: [EMAIL PROTECTED] [EMAIL
16 matches
Mail list logo