It would be a bit more complicated than that surely, as you are not just replacing a word, you are replacing a function call and all its arguments with a tag and all its parameters, and as each instance will not be the name it doesn't seem like something you could easily automate.
-----Original Message----- From: Adrocknaphobia [mailto:adrocknapho...@gmail.com] Sent: 10 November 2010 16:40 To: cf-talk Subject: Re: CF Blog software Of course, if this is CF9, you can replace all the createObject() calls by using the 'new' keyword. Sorry to be a walking advertisement, but ColdFusion Builder refactoring will make that task very easy. -Adam On Tue, Nov 9, 2010 at 2:11 PM, Raymond Camden <rcam...@gmail.com> wrote: > > To Dave's suggestion of replacing createObject w/ cfinvoke - I believe > (stress - believe) other BlogCFC users have done it in the past. It > isn't officially supported by BlogCFC, Inc (aka me) but I believe it > can be done. > > > On Tue, Nov 9, 2010 at 12:59 PM, Alan Rother <alan.rot...@gmail.com> > wrote: > > > > Ah, that does make sense. Thanks Dave! > > > > =] > > > > On Tue, Nov 9, 2010 at 11:56 AM, Dave Watts <dwa...@figleaf.com> wrote: > > > >> > >> > I know all about CreateObject's security risks from a hosting > >> perspective, > >> > but I've never heard of an issue with CFCONTENT (I'm not doubting > >> > you, > >> I'm > >> > just curious what the issues are.) > >> > >> It can be used to download any file that the CF service has > >> permission to access, including sensitive Windows files (assuming > >> you're on Windows). By default, on Windows the CF service runs as > >> SYSTEM, which has practically unrestricted access to everything. > >> Even if CF is configured to use a less-privileged user account (as > >> it should be as a matter of course) that user account will > >> certainly have permission to read any files used by, say, other hosting clients. > >> > >> My assumption is that CFCONTENT can be sandboxed, but again I'm no > >> expert on sandboxing. > >> > >> Dave Watts, CTO, Fig Leaf Software > >> http://www.figleaf.com/ > >> http://training.figleaf.com/ > >> > >> Fig Leaf Software is a Veteran-Owned Small Business (VOSB) on GSA > >> Schedule, and provides the highest caliber vendor-authorized > >> instruction at our training centers, online, or onsite. > >> > >> > > > > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:339091 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
