> I just wanted to tell you to watch out for the other tags as well. Just as > an example: cfregistry. As much as I found it hard to believe when I was > first shown it, there is a 'cfadmin' cfregistry 'hack-script' that will > output the decoded admin password from the 'registry' to the browser. I > thought for sure that that was only for the windows fools <VBG - j/k> but > alas, no - linux has that 'prob' as well. See what happens when you 'borrow' > winders stuff (registry) - you get winders 'problems' ;P...
It has nothing to do with where the password is stored. Allaire has apparently chosen a very weak encryption scheme for storage of their admin password is all. Justin Buist Trident Technology, Inc. 4700 60th St. SW, Suite 102 Grand Rapids, MI 49512 Ph. 616.554.2700 x2009 Fx. 616.554.3331 Mo. 616.291.2612 ^ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm ------------------------------------------------------------------------------ Archives: http://www.mail-archive.com/cf-linux%40houseoffusion.com/ To Unsubscribe visit http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_linux or send a message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
