the lockdown guide is not perfect and in my experience just following the guide exactly does cause problems, so you do need to really know what you are doing on the server with permissions to cover the bits it doesn't tell you.
I do not follow it myself, I have my own process, so I cannot tell you exactly where it fails. The best bet would be to test CF after each step and see which one is buggering it up for you. The bare minimum bits you MUST do is 1. run CF under a separate user account which only has access to the folders that CF needs access to. So CF itself, the folder where the websites are store, OS temp folders, the temp folder of the user under which CF is now running (windows only requires this I think) 2. make sure the internal cf web server is not enabled 3. lock down the cfadmin so that it is not publicly accessible from any website. Personally I do this by using IP address restrictions so the entire default website where cfadmin resides is only accessible via localhost and via our secure VPN. 4. make a copy of the CFIDE with only the files that your site requires and use this for the Vdir. Ideally you should avoid using any CF features that require the CFIDE anyway, as they all pretty much suck and you will not find many in the community who wont say the same. So this is any of the UI tags, flash forms, CFFORM tags etc, there are better alternatives. Avoiding the CFIDE will also most likely make your site Railo compatible too. 5. On Wed, Dec 10, 2014 at 3:30 PM, Steve LaBadie <[email protected]> wrote: > > Thanks for the link Russ > > After I did the install I went ahead and did the updates and it crash CF. > I had to uninstall and re-install. Any ideas or advice? > > Steve LaBadie, Web Manager > East Stroudsburg University > 570-422-3999 > [email protected] > > > > -----Original Message----- > From: Russ Michaels [mailto:[email protected]] > Sent: Tuesday, December 09, 2014 9:27 AM > To: cf-talk > Subject: Re: CF 11 Admin Panel > > > > http://www.adobe.com/content/dam/Adobe/en/products/coldfusion/pdfs/cf11/cf11-lockdown-guide.pdf > > > On Tue, Dec 9, 2014 at 1:24 PM, Steve LaBadie <[email protected]> > wrote: > > > > > We have just come out of the dark ages from a Window 2003 server with > > CF > > MX7 to Windows 2012 R2 with CF11 standard. I just completed the > > install and want to know if someone could point me in the right direct > > for best practices for setting up the Admin Panel. > > > > Steve LaBadie, Web Manager > > East Stroudsburg University > > 570-422-3999 > > [email protected]<mailto:[email protected]> > > > > [facebook-16x16]<http://www.facebook.com/eaststroudsburguniversity> > > [twitter-16x16] <http://twitter.com/esuniversity> [youtube-16x16] < > > http://www.youtube.com/user/esuedu> > > > > > > > > > > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359801 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
