Same here... restricted by internal IP address and username/password. -----Original Message----- From: Andrew Grosset [mailto:rushg...@yahoo.com] Sent: Wednesday, August 11, 2010 2:08 PM To: cf-talk Subject: Re: Millions of Coldfusion sites need to apply patches
phew!! for a moment I was worried No authentication is needed; all that is needed is that the admin console is accessible to the Internet......... Apply patches as described below, or restrict access to /CIDE/administrator/ by IP address or other similar controls. this line is important: restrict access to /CIDE/administrator/ by IP address or other similar controls this should be mandatory irrespective of the patches applied (in my opinion). > Millions of users of Adobeââ¬â¢s ColdFusion programming language are at > risk of losing control of their applications and websites. > The full details of the vulnerability can be found on www.procheckup. > com ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology-Michael-Dinowitz/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:336235 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
