Sandbox security does not need to be enabled to deny this method. On 20/11/06, Maximilian Nyman <[EMAIL PROTECTED]> wrote: > > Well you're partially right, it obviously depends on your environment, > but the question was "Can it be done" and the answer is yes it can. > > The permission denied - This is something you would get if you have > sandboxing enabled, a feature that only exists in CFMX Enterprise. For > all the people running CFMX Standard (which is quite a few) this > option does not exist and you could absolutely use the my code to > snoop, edit or even hijack application(s)/session(s). > > > As for my own situation I can do what ever I want to do since I Am the > admin and I don't need to consider the security aspect since I have > one else to worry about than myself ;) > > > Good night, > Max > > On 11/19/06, ACTCFUG <[EMAIL PROTECTED]> wrote: > > > > Nice try but that will not work if access to Java objects in the > > ColdFusion runtime package have been denied. This can be done in the > > Administrator. > > > > A message like: > > > > Permission denied for creating Java object: > > coldfusion.runtime.SessionTracker. > > > > would be returned. > > > > Or under MX 7.x something like: > > > > Element TEST_111506_1410_303_43654652 is undefined in a Java object of > > type class coldfusion.runtime.AppSessionCollection referenced as > > > > If you can do this on your server it seems your administrator has no > > idea about security. > > > > > > > > > > > > >
-- Peter Tilbrook ColdGen Internet Solutions Manager, ACT and Region ColdFusion Users Group PO Box 2247 Queanbeyan, NSW, 2620 AUSTRALIA http://www.coldgen.com/ http://www.actcfug.com/ Tel: +61-2-6284-2727 Mob: +61-0432-897-437 Email: [EMAIL PROTECTED] --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "cfaussie" group. To post to this group, send email to cfaussie@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en -~----------~----~----~----~------~----~------~--~---