Gyrus wrote: > > - If it's the latter (just one sandbox for the whole account), don't we run > the risk of one of our hosting clients with CFFILE enabled having potential > access to the files of other clients?
Yes. > - Does sandboxing affect performance or anything else significantly? What do > people their likely setup will be? I don't know enough about the mechanics > of CF Server to assess it properly. It shouldn't matter too much. Normal CFMX is running in a Sandbox as well, only it is just one Sandbox for the entire system, not different ones for each directory. > - How much of a risk is CFFILE on CFMX? If uncontrolled, it is like handing out cards with u/p of the admin account. > I've heard of solutions to the > CFFILE problem where replacement custom tags are used that limit access, but > I can't guess how these work - anyone know? Is there are way of implementing > this sort of thing without access to the CF Server itself (my guess is no!)? Don't know. I believe most of these were COM based, and I don't know if they play nice with CF MX. > Would it be easy for the hosting company to implement if we approached them > about it? I guess it will be extremely difficult and they will not do it. > Any thoughts on this would be really well received, it's a nightmare being > at this in-between of knowledge and trying to assess the risks before going > into reselling... > > If in the end we have the option to set up CFFILE and non-CFFILE virtual > servers, we may just go with the option of not offering CFFILE servers to > people we don't know and trust. Seems like the only way around the security > hazard, short of every virtual server being sandboxed. Just cffile doesn't help. There are many more tags that manipulate files. Just do a cfpop, set the attachmentpath to c:\ and have fun when somebody sends an attachment with the name boot.ini and your boot.ini gets overwritten. Same for cfhttp, cfmail, cfftp, cfobject and the like. And don't forget you need to disable the JSP capabilities (which is a server-wide setting). > Finally, this host offers different platforms (Linux/NT) and server > technologies (CF/PHP/ASP) within the same reseller account. What are the > downsides to this setup? CF and ASP don't play nice. Some of the settings that MS recommends for security are against MM policies for CF and vice versa. Then there are issues as CF running with different credentials from ASP/PHP, i.e. files written by CF may not be readable by ASP and vice versa. Don't plan on using more as 1 scripting language in an application as was possible with CF 5. In general, much of the security is dependent on obscurity. Jochem ______________________________________________________________________ This list and all House of Fusion resources hosted by CFHosting.com. The place for dependable ColdFusion Hosting. FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Archives: http://www.mail-archive.com/[email protected]/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
