Right
you are. I asked Google, and found one of the web sites you were talking
about.
I've
learnt something new.
I've
got security stuff to, PKI, IIS and ColdFusion. argh!
I may
be asking my own questions soon!
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Shane Farmer
Sent: Friday, 8 July 2005 1:56 p.m.
To: CFAussie Mailing List
Subject: [cfaussie] Re: Cookies
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Shane Farmer
Sent: Friday, 8 July 2005 1:56 p.m.
To: CFAussie Mailing List
Subject: [cfaussie] Re: Cookies
---Just a side note (sucurity has been a big topic at work)David Wrote:
Another way to protect the data could be to Hash it.
This is a very effective way of protecting information, as you get the
same result every time you Hash a given value, but it is impossible to
reverse.
I wouldn't say a hash is impossible to reverse. We had a problem where we needed VERY secure data storage and found that an MD5 could pottentially be broken by a high end desktop in a few minutes. There are even online sites to crack them for you. ColdFusion (MX 6.1) is even worse. A calculator or mobile phone could break the XOR used.
Nothing is ever completely secured (and still available) but you can lower the risks involved by using Java or CFX (C++) to do some strong encryption.
I think I should lay off the coffee for a while...
--- You are currently subscribed to cfaussie as: [EMAIL PROTECTED] To unsubscribe send a blank email to [EMAIL PROTECTED] Aussie Macromedia Developers: http://lists.daemon.com.au/
You are currently subscribed to cfaussie as: [email protected]
To unsubscribe send a blank email to [EMAIL PROTECTED] Aussie Macromedia Developers: http://lists.daemon.com.au/
This email contains confidential information. If you are not the intended recipient of this email, please notify Straker Interactive and delete the email. You are not entitled to use it in any way.
