All, while we're on the subject of patching & upgrades.. last night I patched our *9.01* box with the latest hotfix4 from http://helpx.adobe.com/coldfusion/kb/hot-fixes-coldfusion-9.html and I followed the steps there.
But I'm still fuzzy on a couple things.. I didn't want to go through the hassle of doing a complete uninstall/reinstall to get the box over to the 9.02 series. Am I still in danger of having security holes that aren't addressed by the 9.01 series hotfixes? And, also within this hotfix4 I applied -- an "optional" step is to upgrade the jvm by getting the latest jdk from oracle, modifying the jvm.config to call the new, etc. I elected not to touch the jvm and we are still using native (out of the box ver). Am I again in danger of new security issues? (I have another Adobe rant. They mention in this step to use only the JDKs which are compatible with cf9 -- but don't bother within the instructions to tell you which are compatible!). How did you guys approach your cf9 patching? Happy Friday. Thx, Steve *armed with coffee*
