On 9/24/07, Ian Skinner <[EMAIL PROTECTED]> wrote: > > My assumption is that the thinking is that one can expose only a static site > with no dynamic capability to the whole wide world. Then your application > server is c
That's not really what a "three tiered security" model is though.... I thought it referred to having the web server and coldfusion engine on separate hosts, so that the web server passes requests for coldfusion processing to the server running coldfusion... which processes the CFML and hands the result back to the web server. I've always thought this was more for load distribution though than security. It's something that my boss has asked about in the past and I've convinced him we don't need to do it. -- Rick Root Check out CFMBB, BlogCFM, ImageCFC, ImapCFC, CFFM, and more at www.opensourcecf.com ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Get involved in the latest ColdFusion discussions, product development sharing, and articles on the Adobe Labs wiki. http://labs/adobe.com/wiki/index.php/ColdFusion_8 Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:289349 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
