This is like saying having my phone number and address in the phone book is a security risk. Yes it is but it is a pretty small one. As long as I have good locks on my doors and a big dog in the house I am relatively secure. Unlisting my phone number adds a marginal increase of security but not much.
If the bad guys know I have something they want they will find me listed or not. Shawn McKee -----Original Message----- From: James Downes [mailto:[EMAIL PROTECTED] Sent: Friday, October 07, 2005 8:50 AM To: CF-Server Subject: Re: ColdFusion Security Holes - Best Practices No they are not, the servers that sit on the end of them are. Thomas Chiverton wrote: >On Friday 07 October 2005 14:18, James Downes wrote: > > >>If that's the kind of advice you're getting, get a different "security >>consultant". IP addresses are not security risks. >> >> > >Yes they are. They are the most popular vector for attacks against computers. >Unfortunately, the only way I know of of hiding your IP address also involves >not running a web application :-) > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Find out how CFTicket can increase your company's customer support efficiency by 100% http://www.houseoffusion.com/banners/view.cfm?bannerid=49 Message: http://www.houseoffusion.com/lists.cfm/link=i:10:5573 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/10 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:10 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.10 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
