....My goodness, that's ridiculous. If you run a programmer's code without ....auditing every line of source code, you are in essence trusting that ....programmer. I could just as easily slip a back door into code that uses ....browser authentication as I could into code that uses forms-based ....authentication, I think. Keep in mind that, by default, CF code runs as ....SYSTEM on Windows servers.
That's my opionion as well, but they aren't taking my word for it, but I think I'm making some progress by example. Can you give me in idea of how a back door that got to the browser authentication might look. I suspected that was possible, but don't know enough to show how it is possible. -------------- Ian Skinner Web Programmer BloodSource www.BloodSource.org Sacramento, CA "C code. C code run. Run code run. Please!" - Cynthia Dunning Confidentiality Notice: This message including any attachments is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender and delete any copies of this message. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Discover CFTicket - The leading ColdFusion Help Desk and Trouble Ticket application http://www.houseoffusion.com/banners/view.cfm?bannerid=48 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:193364 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
