> I just wanted to tell you to watch out for the other tags as > well. Just as an example: cfregistry. As much as I found it > hard to believe when I was first shown it, there is a 'cfadmin' > cfregistry 'hack-script' that will output the decoded admin > password from the 'registry' to the browser. I thought for > sure that that was only for the windows fools <VBG - j/k> but > alas, no - linux has that 'prob' as well. See what happens > when you 'borrow' winders stuff (registry) - you get winders > 'problems' ;P...
For what it's worth, this doesn't have anything to do with the registry itself, or Windows, but rather just that CF has hard-coded keys used for encryption and decryption, built into the server itself. That's why there's a publicly available utility for decrypting CF files - the encryption that Allaire provides just isn't that good, and the keys used can't ever be changed. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ voice: (202) 797-5496 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Your ad could be here. Monies from ads go to support these lists and provide more resources for the community. http://www.fusionauthority.com/ads.cfm ------------------------------------------------------------------------------ Archives: http://www.mail-archive.com/cf-linux%40houseoffusion.com/ To Unsubscribe visit http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_linux or send a message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
