put the documents in a folder outwith the website. eg. your site's at C:
\Inetpub\yoursite\. put your important documents at C:
\documents\yoursite\.
Then to serve up the documents, you would use CFContent, referencing
wherever the file is located. something like
<cfcontent file="C:\documents\yoursite\document.doc" type
="application/doc">. I think if you use application/unknown it will force
the document to be downloaded rather than automatically display it in the
browser.
[EMAIL PROTECTED]
ham.gov.uk To: <[EMAIL PROTECTED]>
cc:
06/05/2004 09:23 Subject: [ cf-dev ] Security
for documents
Please respond to dev
I have my system on the live server now but security is now a big issue.
How do I stop users from typing a URL directly to a document on the server?
I have been reading up on <cfcontent> but i'm not sure I understand how
this works ...
Can anyone give me any pointers please ...
Regards - Paul
*************************************************************************************************
The information contained within this e-mail (and any attachment) sent by
Birmingham City Council is confidential and may be legally privileged. It
is intended only for the named recipient or entity to whom it is addressed.
If you are not the intended recipient please accept our apologies and
notify the sender immediately, or telephone +(44) 121 303 6666.
Unauthorised access, use, disclosure, storage or copying is not permitted
and may be unlawful. Any e-mail including its content may be monitored and
used by Birmingham City Council for reasons of security and for monitoring
internal compliance with the office policy on staff use. E-mail blocking
software may also be used. Any views or opinions presented are solely those
of the originator and do not necessarily represent those of Birmingham City
Council. We cannot guarantee that this message or any attachment is virus
free or has not been intercepted and amended.
*************************************************************************************************
--
These lists are syncronised with the CFDeveloper forum at
http://forum.cfdeveloper.co.uk/
Archive: http://www.mail-archive.com/dev%40lists.cfdeveloper.co.uk/
CFDeveloper Sponsors and contributors:-
*Hosting and support provided by CFMXhosting.co.uk* :: *ActivePDF provided
by activepdf.com*
*Forums provided by fusetalk.com* :: *ProWorkFlow provided by
proworkflow.com*
*Tutorials provided by helmguru.com* :: *Lists hosted by
gradwell.com*
To unsubscribe, e-mail: [EMAIL PROTECTED]
--
These lists are syncronised with the CFDeveloper forum at
http://forum.cfdeveloper.co.uk/
Archive: http://www.mail-archive.com/dev%40lists.cfdeveloper.co.uk/
CFDeveloper Sponsors and contributors:-
*Hosting and support provided by CFMXhosting.co.uk* :: *ActivePDF provided by
activepdf.com*
*Forums provided by fusetalk.com* :: *ProWorkFlow provided by proworkflow.com*
*Tutorials provided by helmguru.com* :: *Lists hosted by gradwell.com*
To unsubscribe, e-mail: [EMAIL PROTECTED]
