We just had a security audit and one of the recommendations was to separate Cold Fusion and IIS onto two separate systems. I hadn't heard of doing this, and am really wary of doing this since we are using Commonspot and I have no idea what ramifications would result.
Their reasoning for this was pretty vague, so can anyone give me reasons why we should and shouldn't do this? The motivation in this particular case being improved security. Thanks John --- John Venable Director of Web Architecture Epilepsy Foundation ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Archives: http://www.houseoffusion.com/cf_lists/index.cfm?forumid=4 Subscription: http://www.houseoffusion.com/cf_lists/index.cfm?method=subscribe&forumid=4 FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Signup for the Fusion Authority news alert and keep up with the latest news in ColdFusion and related topics. http://www.fusionauthority.com/signup.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
