> Mapping to a directory outside of the webroot is the same as > having the files in the webroot. If you can access the file > from a URL it's public domain. > > One of the most dangerous file in any application is going to > be application.cfm we all know were that's at...
This only applies to web server mappings. If you use a CF mapping within a ..cfm file, that CF mapping can point to a directory that isn't readable by the web server. For that matter, there's no reason why Application.cfm needs to be in a web-accessible directory, and it typically isn't on the few applications where I can control the architecture, filesystem organization, etc. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Message: http://www.houseoffusion.com/lists.cfm/link=i:4:228951 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
