Interesting. Do you, the majority of people run ColdFusion in an n tiered setup (Web, Application, Data etc) I guess you can run ColdFusion in this tiered approach without the need for it to be in distributed mode?
"This e-mail is from Reed Exhibitions (Gateway House, 28 The Quadrant, Richmond, Surrey, TW9 1DN, United Kingdom), a division of Reed Business, Registered in England, Number 678540. It contains information which is confidential and may also be privileged. It is for the exclusive use of the intended recipient(s). If you are not the intended recipient(s) please note that any form of distribution, copying or use of this communication or the information in it is strictly prohibited and may be unlawful. If you have received this communication in error please return it to the sender or call our switchboard on +44 (0) 20 89107910. The opinions expressed within this communication are not necessarily those expressed by Reed Exhibitions." Visit our website at http://www.reedexpo.com -----Original Message----- From: Dave Watts To: CF-Talk Sent: Wed Feb 21 02:42:41 2007 Subject: RE: Distributed Mode > What are people in the knows experience of running CF in > distributed mode? Better? Faster? More secure? Generally more secure, potentially but not generally faster. It's more secure in that you can isolate executable code from your public-facing web server; if the web server is successfully attacked, the attacker can not simply run CFML commands. It may be faster in that the application server will be dedicated to CF, and won't have to do any web server stuff, although that is counterbalanced by the need for the web server and the application server to talk to each other over the network. "Better" is more a point of view than a quantifiable value here. In some environments, removing executable content from the public-facing web server is a requirement. Doing so doesn't have any effect on the most common application vulnerabilities, SQL injection and XSS. It adds complexity where it wouldn't otherwise exist, as well. One alternative to using distributed mode is to use a reverse proxy, which has the same effect of removing executable content from the public interface, but which has the advantage of being understood by the guy who's managing the web server (in most cases). Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Upgrade to Adobe ColdFusion MX7 The most significant release in over 10 years. Upgrade & see new features. http://www.adobe.com/products/coldfusion Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:270287 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
