> Running as administrator is horribly insecure. If anyone > manages to run illicit code on your CF server, it will > have complete access to everything, rather than being > sandboxed to only what a low-level user account has access > to. Using the System account is better, but a separate > account for only CF is best.
Running as the SYSTEM account is also horribly insecure. In some respects, it's more of a problem than running as any other specific user account, including the Administrator account. Any code run by SYSTEM is considered to be part of the "Trusted Computing Base", and can impersonate other users. This is how the CFIMPERSONATE tag used in CF 4 and 5 worked. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ voice: (202) 797-5496 fax: (202) 797-5444 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Archives: http://www.houseoffusion.com/cf_lists/index.cfm?forumid=4 Subscription: http://www.houseoffusion.com/cf_lists/index.cfm?method=subscribe&forumid=4 FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Signup for the Fusion Authority news alert and keep up with the latest news in ColdFusion and related topics. http://www.fusionauthority.com/signup.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
