And I am sure they would have access to other means such as packet capture...your point?
Eric -----Original Message----- From: Dave Watts [mailto:[EMAIL PROTECTED] Sent: Sunday, March 04, 2007 9:39 PM To: CF-Talk Subject: RE: Why does IE s*(k... let me count the ways. > How is that? It at least has a level of obscurity. You > would have to know that form vars are there in the first > place to know what to grab...and then you would have to know > the field names to address them. With a URL...it's all right > there for the world to see. While it may not be Fort Knox > level of security...it's better than absolutely nothing at all. Anybody who's a threat to your application's security is certainly aware of "view source". Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Create Web Applications With ColdFusion MX7 & Flex 2. Build powerful, scalable RIAs. Free Trial http://www.adobe.com/products/coldfusion/flex2/ Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:271481 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
