Whoops - I didn't mean PGP - I actually mean - PHP - slip of the finger
there!
Sorry!
> -----Original Message-----
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On
> Behalf Of Stephen Moretti
> Sent: Wednesday, 01 November 2000 11:25
> To: [EMAIL PROTECTED]; Cf-Talk@Houseoffusion. Com
> Cc: Mike Connolly
> Subject: RE: ColdFusion is vulnerable?
>
>
> >
> > Have a look at this article listing ColdFusion as number 2 in top 10
> > internet security threats...
> > http://www.sans.org/topten.htm
> >
> > Comments on a postcard please?
> >
>
> Mike,
>
> That is a really OLD article and it doesn't actually say _coldfusion_ is
> number 2 top internet security risk. It actually says any _CGI_
> is a number
> 2 security risk (that includes perl, TCL, PGP, JSP anything you can name)
> and mostly from sample apps being left on the server and security patches
> not being installed.
>
>
> Sapphire is a part of a security firm - you already have all of
> the patches
> (and more) installed on your servers, so you should be as ok as any server
> can be.... Just make sure that having installed all the security patches,
> you've removed the sample apps and made any other recommended
> adjustments to
> the server.
>
> See http://www.allaire.com/security
>
> Regards
>
> Stephen
>
>
------------------------------------------------------------------------------------------------
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists or send a message
with 'unsubscribe' in the body to [EMAIL PROTECTED]
