> It's not exactly true that "all sorts of code other than CF" > have these sorts of problems in shared hosting environments. > ASP.NET, for example, isolates every application from all the > others just to avoid these problems. > If you're running BlueDragon.NET, then your CFML inherits > this application isolation so that multiple users can use the > same CFAPPLICATION name without conflict. Also, with > BlueDragon.NET, you don't have to turn off CFOBJECT to avoid > security issues; again, this is because the underlying > ASP.NET runtime insures that all applications are isolated > from each other.
Well, first of all, when I said "all sorts" I simply meant it's a common problem, not that there aren't environments that are immune. You can run Perl or whatever within a chroot environment on Unix, and that would also be immune. However, these environments are the exception and not the rule, I suspect. That said, it's my understanding that ASP.NET does not automatically isolate applications the way you suggest. You can configure them to be isolated within the IIS management console by choosing the application isolation level in IIS 5 or the application pool in IIS 6, but I'm not sure what the default settings happen to be - on IIS 6, I think the "DefaultAppPool" is used by default, while on IIS 5 I think that "Medium" is the default application isolation level, which I believe will place more than one application within the same pool. In addition, on IIS 5 your ASP.NET applications run as LocalSystem by default, I think, so those applications have free run of the filesystem by default. On IIS 6 you can run them using a lower-privilege security context like NetworkSystem, but that's not the default setting. Now, I'm certainly no expert when it comes to ASP.NET security, so if I've made any errors, please let me know. But in any case, running separate ASP.NET application pools is about the same thing as running separate instances of CFMX within separate JRun servers, as far as I can tell, although presumably the memory consumption of a single ASP.NET application is probably much smaller than the memory consumption of a single CFMX instance. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Logware (www.logware.us): a new and convenient web-based time tracking application. Start tracking and documenting hours spent on a project or with a client with Logware today. Try it for free with a 15 day trial account. http://www.houseoffusion.com/banners/view.cfm?bannerid=67 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:204162 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
