Can I also add that I have another blog about ColdFusion 9.01 and ORM Event Handling on shared servers.
At the moment there is a bug in ColdFusion where it is hard coded for some reason with the Event Handler Interface, and following the method that Kym has stated, means that in a SandBoxed environment you will get an error. I don't know what the full hack to get this to work actually is, my host takes care of it for me. If anyone actually does know about this problem, and how to sandbox is correctly please I would love to know. But I assume as they use the likes of Helm or Plesk, the scripts don't take this into consideration, and has to be manually added to the sandbox. On Thu, Aug 18, 2011 at 11:01 AM, Kym Kovan <[email protected]>wrote: > Picking up on one part of Andrew's post > > On 18/08/2011 10:36, Andrew Scott wrote in part: > > >> As for the Admin being accessible, I could argue that one still needs to >> apply the normal security measures on that anyway, especially if you >> require the Ajax and new UI features of the likes of cfGrid etc. >> >> > We have a dedicated website on each server which had very restricted access > so that the full CFIDE admin area is well protected. > > We make a copy of the CFIDE folder that has just the essential parts to > make ajax and scripting, etc., work (IE at the minimum take out the > /administrator/ folder) and then make that available as a /CFIDE virtual > directory for each site. Then all of the exotic CF tags work and there is a > much lesser security risk. > > -- Regards, Andrew Scott WebSite: http://www.andyscott.id.au/ Google+: http://plus.google.com/108193156965451149543 -- You received this message because you are subscribed to the Google Groups "cfaussie" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en.
