Re: [cfaussie] CFUG Melbourne for September: Don't Miss It! Tomorrow Night (16 Sept)
I'm on my way :) Mark On Thu, Sep 16, 2010 at 11:42 AM, Steve Armstrong armst...@gmail.comwrote: Count me in On 15 September 2010 13:36, Peter Robertson pe...@p-robertson.com wrote: If you are attending, (and we hope that you will be), please RSVP so that Steve can organise catering. This is a not-to-be-missed event, especially for those responsible for web application security! Details: A look at securing your ColdFusion servers using the ColdFusion Server Lock Down Guide and other practical tips to ensure your servers are best protected against unknown future vulnerabilities and attacks. * A look at the technical reasons behind the ColdFusion Server Lock Down Guide * Running ColdFusion with minimal privileges * Stopping the world from accessing the CF Administrator * ColdFusion Administrator secure settings * Making use of Security Sandboxes * Disabling unused services * Security Issues in your code * The recent CF8/9 Security Hot Fix, how to hack an unpatched CF server and why you should have already patched your server Phil is a long-time ColdFusion developer and administrator and has a deep understanding of how ColdFusion does what it does. He consults to many varied organisations around ColdFusion, Flex and the larger Adobe product stack and advocates best practice approaches to development methodologies, testing and deployment security. He is a long time RocketBoots partner and CodeWar quizmaster. Date: Thursday 16 September 2010 Time: 6:30 PM Location: CogState Level 2 255 Bourke Street Melbourne, VIC, 3000 A note on the door will provide a number to ring for access. RSVP: Please reply to this post if you are planning to attend so we know how many pizzas to order. As always, many thanks to Dale Fraser and CogState for their hospitality. We look forward to seeing you all there. Peter Robertson Co-Manager Melbourne CFUG Steve Onnis Manager Melbourne CFUG -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.comcfaussie%2bunsubscr...@googlegroups.com . For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en. -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.comcfaussie%2bunsubscr...@googlegroups.com . For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en. -- E: mark.man...@gmail.com T: http://www.twitter.com/neurotic W: www.compoundtheory.com cf.Objective(ANZ) - Nov 18, 19 - Melbourne Australia http://www.cfobjective.com.au Hands-on ColdFusion ORM Training www.ColdFusionOrmTraining.com -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en.
[cfaussie] CFUG Melbourne for September: Don't Miss It! Tomorrow Night (16 Sept)
If you are attending, (and we hope that you will be), please RSVP so that Steve can organise catering. This is a not-to-be-missed event, especially for those responsible for web application security! Details: A look at securing your ColdFusion servers using the ColdFusion Server Lock Down Guide and other practical tips to ensure your servers are best protected against unknown future vulnerabilities and attacks. * A look at the technical reasons behind the ColdFusion Server Lock Down Guide * Running ColdFusion with minimal privileges * Stopping the world from accessing the CF Administrator * ColdFusion Administrator secure settings * Making use of Security Sandboxes * Disabling unused services * Security Issues in your code * The recent CF8/9 Security Hot Fix, how to hack an unpatched CF server and why you should have already patched your server Phil is a long-time ColdFusion developer and administrator and has a deep understanding of how ColdFusion does what it does. He consults to many varied organisations around ColdFusion, Flex and the larger Adobe product stack and advocates best practice approaches to development methodologies, testing and deployment security. He is a long time RocketBoots partner and CodeWar quizmaster. Date: Thursday 16 September 2010 Time: 6:30 PM Location: CogState Level 2 255 Bourke Street Melbourne, VIC, 3000 A note on the door will provide a number to ring for access. RSVP: Please reply to this post if you are planning to attend so we know how many pizzas to order. As always, many thanks to Dale Fraser and CogState for their hospitality. We look forward to seeing you all there. Peter Robertson Co-Manager Melbourne CFUG Steve Onnis Manager Melbourne CFUG -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en.
Re: [cfaussie] CFUG Melbourne for September: Don't Miss It! Tomorrow Night (16 Sept)
Hi Peter / Steve, I will be there. And will most likely have our intern with us. As always, please contact me if I can be of any futher assistance. Gavin Beau Baumanis Senior Application Developer PalCare Pty. Ltd. P: +61 -3 9380 3513 M: +61 -438 545 586 E: b...@palcare.com.au W: http://palcare.com.au On 15/09/2010, at 1:36 PM, Peter Robertson wrote: If you are attending, (and we hope that you will be), please RSVP so that Steve can organise catering. This is a not-to-be-missed event, especially for those responsible for web application security! Details: A look at securing your ColdFusion servers using the ColdFusion Server Lock Down Guide and other practical tips to ensure your servers are best protected against unknown future vulnerabilities and attacks. * A look at the technical reasons behind the ColdFusion Server Lock Down Guide * Running ColdFusion with minimal privileges * Stopping the world from accessing the CF Administrator * ColdFusion Administrator secure settings * Making use of Security Sandboxes * Disabling unused services * Security Issues in your code * The recent CF8/9 Security Hot Fix, how to hack an unpatched CF server and why you should have already patched your server Phil is a long-time ColdFusion developer and administrator and has a deep understanding of how ColdFusion does what it does. He consults to many varied organisations around ColdFusion, Flex and the larger Adobe product stack and advocates best practice approaches to development methodologies, testing and deployment security. He is a long time RocketBoots partner and CodeWar quizmaster. Date: Thursday 16 September 2010 Time: 6:30 PM Location: CogState Level 2 255 Bourke Street Melbourne, VIC, 3000 A note on the door will provide a number to ring for access. RSVP: Please reply to this post if you are planning to attend so we know how many pizzas to order. As always, many thanks to Dale Fraser and CogState for their hospitality. We look forward to seeing you all there. Peter Robertson Co-Manager Melbourne CFUG Steve Onnis Manager Melbourne CFUG -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en. -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en.
Re: [cfaussie] CFUG Melbourne for September: Don't Miss It! Tomorrow Night (16 Sept)
I'll be there. Seriously people - don't miss this one! Sent from my iPhone On 15/09/2010, at 1:41 PM, Gavin Beau Baumanis b...@palcare.com.au wrote: Hi Peter / Steve, I will be there. And will most likely have our intern with us. As always, please contact me if I can be of any futher assistance. Gavin Beau Baumanis Senior Application Developer PalCare Pty. Ltd. P: +61 -3 9380 3513 M: +61 -438 545 586 E: b...@palcare.com.au W: http://palcare.com.au On 15/09/2010, at 1:36 PM, Peter Robertson wrote: If you are attending, (and we hope that you will be), please RSVP so that Steve can organise catering. This is a not-to-be-missed event, especially for those responsible for web application security! Details: A look at securing your ColdFusion servers using the ColdFusion Server Lock Down Guide and other practical tips to ensure your servers are best protected against unknown future vulnerabilities and attacks. * A look at the technical reasons behind the ColdFusion Server Lock Down Guide * Running ColdFusion with minimal privileges * Stopping the world from accessing the CF Administrator * ColdFusion Administrator secure settings * Making use of Security Sandboxes * Disabling unused services * Security Issues in your code * The recent CF8/9 Security Hot Fix, how to hack an unpatched CF server and why you should have already patched your server Phil is a long-time ColdFusion developer and administrator and has a deep understanding of how ColdFusion does what it does. He consults to many varied organisations around ColdFusion, Flex and the larger Adobe product stack and advocates best practice approaches to development methodologies, testing and deployment security. He is a long time RocketBoots partner and CodeWar quizmaster. Date: Thursday 16 September 2010 Time: 6:30 PM Location: CogState Level 2 255 Bourke Street Melbourne, VIC, 3000 A note on the door will provide a number to ring for access. RSVP: Please reply to this post if you are planning to attend so we know how many pizzas to order. As always, many thanks to Dale Fraser and CogState for their hospitality. We look forward to seeing you all there. Peter Robertson Co-Manager Melbourne CFUG Steve Onnis Manager Melbourne CFUG -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en. -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en. -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en.
Re: [cfaussie] CFUG Melbourne for September: Don't Miss It! Tomorrow Night (16 Sept)
Yeah, no pressure there! And come along with the URLs of your unpatched CF9 (8 or 7) servers. I'll show you how easy it to log into your CF Administrator! Seriously. Patch your servers. Phil On 15/09/10 1:44 PM, MrBuzzy wrote: I'll be there. Seriously people - don't miss this one! Sent from my iPhone On 15/09/2010, at 1:41 PM, Gavin Beau Baumanisb...@palcare.com.au wrote: Hi Peter / Steve, I will be there. And will most likely have our intern with us. As always, please contact me if I can be of any futher assistance. Gavin Beau Baumanis Senior Application Developer PalCare Pty. Ltd. P: +61 -3 9380 3513 M: +61 -438 545 586 E: b...@palcare.com.au W: http://palcare.com.au On 15/09/2010, at 1:36 PM, Peter Robertson wrote: If you are attending, (and we hope that you will be), please RSVP so that Steve can organise catering. This is a not-to-be-missed event, especially for those responsible for web application security! Details: A look at securing your ColdFusion servers using the ColdFusion Server Lock Down Guide and other practical tips to ensure your servers are best protected against unknown future vulnerabilities and attacks. * A look at the technical reasons behind the ColdFusion Server Lock Down Guide * Running ColdFusion with minimal privileges * Stopping the world from accessing the CF Administrator * ColdFusion Administrator secure settings * Making use of Security Sandboxes * Disabling unused services * Security Issues in your code * The recent CF8/9 Security Hot Fix, how to hack an unpatched CF server and why you should have already patched your server Phil is a long-time ColdFusion developer and administrator and has a deep understanding of how ColdFusion does what it does. He consults to many varied organisations around ColdFusion, Flex and the larger Adobe product stack and advocates best practice approaches to development methodologies, testing and deployment security. He is a long time RocketBoots partner and CodeWar quizmaster. Date: Thursday 16 September 2010 Time: 6:30 PM Location: CogState Level 2 255 Bourke Street Melbourne, VIC, 3000 A note on the door will provide a number to ring for access. RSVP: Please reply to this post if you are planning to attend so we know how many pizzas to order. As always, many thanks to Dale Fraser and CogState for their hospitality. We look forward to seeing you all there. Peter Robertson Co-Manager Melbourne CFUG Steve Onnis Manager Melbourne CFUG -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en. -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en. -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en.
RE: [cfaussie] CFUG Melbourne for September: Don't Miss It! Tomorrow Night (16 Sept)
I'll be there, I'm not convinced MrBuzzy will :P Regards Dale Fraser http://dale.fraser.id.au http://cfmldocs.com http://learncf.com http://flexcf.com -Original Message- From: cfaussie@googlegroups.com [mailto:cfaus...@googlegroups.com] On Behalf Of Phil Haeusler Sent: Wednesday, 15 September 2010 2:03 PM To: cfaussie@googlegroups.com Subject: Re: [cfaussie] CFUG Melbourne for September: Don't Miss It! Tomorrow Night (16 Sept) Yeah, no pressure there! And come along with the URLs of your unpatched CF9 (8 or 7) servers. I'll show you how easy it to log into your CF Administrator! Seriously. Patch your servers. Phil On 15/09/10 1:44 PM, MrBuzzy wrote: I'll be there. Seriously people - don't miss this one! Sent from my iPhone On 15/09/2010, at 1:41 PM, Gavin Beau Baumanisb...@palcare.com.au wrote: Hi Peter / Steve, I will be there. And will most likely have our intern with us. As always, please contact me if I can be of any futher assistance. Gavin Beau Baumanis Senior Application Developer PalCare Pty. Ltd. P: +61 -3 9380 3513 M: +61 -438 545 586 E: b...@palcare.com.au W: http://palcare.com.au On 15/09/2010, at 1:36 PM, Peter Robertson wrote: If you are attending, (and we hope that you will be), please RSVP so that Steve can organise catering. This is a not-to-be-missed event, especially for those responsible for web application security! Details: A look at securing your ColdFusion servers using the ColdFusion Server Lock Down Guide and other practical tips to ensure your servers are best protected against unknown future vulnerabilities and attacks. * A look at the technical reasons behind the ColdFusion Server Lock Down Guide * Running ColdFusion with minimal privileges * Stopping the world from accessing the CF Administrator * ColdFusion Administrator secure settings * Making use of Security Sandboxes * Disabling unused services * Security Issues in your code * The recent CF8/9 Security Hot Fix, how to hack an unpatched CF server and why you should have already patched your server Phil is a long-time ColdFusion developer and administrator and has a deep understanding of how ColdFusion does what it does. He consults to many varied organisations around ColdFusion, Flex and the larger Adobe product stack and advocates best practice approaches to development methodologies, testing and deployment security. He is a long time RocketBoots partner and CodeWar quizmaster. Date: Thursday 16 September 2010 Time: 6:30 PM Location: CogState Level 2 255 Bourke Street Melbourne, VIC, 3000 A note on the door will provide a number to ring for access. RSVP: Please reply to this post if you are planning to attend so we know how many pizzas to order. As always, many thanks to Dale Fraser and CogState for their hospitality. We look forward to seeing you all there. Peter Robertson Co-Manager Melbourne CFUG Steve Onnis Manager Melbourne CFUG -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en. -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en. -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en. -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en.
Re: [cfaussie] CFUG Melbourne for September: Don't Miss It! Tomorrow Night (16 Sept)
I am hoping to be there. Depends on how deploy goes. Mark On Wed, Sep 15, 2010 at 2:20 PM, Dale Fraser d...@fraser.id.au wrote: I'll be there, I'm not convinced MrBuzzy will :P Regards Dale Fraser http://dale.fraser.id.au http://cfmldocs.com http://learncf.com http://flexcf.com -Original Message- From: cfaussie@googlegroups.com [mailto:cfaus...@googlegroups.com] On Behalf Of Phil Haeusler Sent: Wednesday, 15 September 2010 2:03 PM To: cfaussie@googlegroups.com Subject: Re: [cfaussie] CFUG Melbourne for September: Don't Miss It! Tomorrow Night (16 Sept) Yeah, no pressure there! And come along with the URLs of your unpatched CF9 (8 or 7) servers. I'll show you how easy it to log into your CF Administrator! Seriously. Patch your servers. Phil On 15/09/10 1:44 PM, MrBuzzy wrote: I'll be there. Seriously people - don't miss this one! Sent from my iPhone On 15/09/2010, at 1:41 PM, Gavin Beau Baumanisb...@palcare.com.au wrote: Hi Peter / Steve, I will be there. And will most likely have our intern with us. As always, please contact me if I can be of any futher assistance. Gavin Beau Baumanis Senior Application Developer PalCare Pty. Ltd. P: +61 -3 9380 3513 M: +61 -438 545 586 E: b...@palcare.com.au W: http://palcare.com.au On 15/09/2010, at 1:36 PM, Peter Robertson wrote: If you are attending, (and we hope that you will be), please RSVP so that Steve can organise catering. This is a not-to-be-missed event, especially for those responsible for web application security! Details: A look at securing your ColdFusion servers using the ColdFusion Server Lock Down Guide and other practical tips to ensure your servers are best protected against unknown future vulnerabilities and attacks. * A look at the technical reasons behind the ColdFusion Server Lock Down Guide * Running ColdFusion with minimal privileges * Stopping the world from accessing the CF Administrator * ColdFusion Administrator secure settings * Making use of Security Sandboxes * Disabling unused services * Security Issues in your code * The recent CF8/9 Security Hot Fix, how to hack an unpatched CF server and why you should have already patched your server Phil is a long-time ColdFusion developer and administrator and has a deep understanding of how ColdFusion does what it does. He consults to many varied organisations around ColdFusion, Flex and the larger Adobe product stack and advocates best practice approaches to development methodologies, testing and deployment security. He is a long time RocketBoots partner and CodeWar quizmaster. Date: Thursday 16 September 2010 Time: 6:30 PM Location: CogState Level 2 255 Bourke Street Melbourne, VIC, 3000 A note on the door will provide a number to ring for access. RSVP: Please reply to this post if you are planning to attend so we know how many pizzas to order. As always, many thanks to Dale Fraser and CogState for their hospitality. We look forward to seeing you all there. Peter Robertson Co-Manager Melbourne CFUG Steve Onnis Manager Melbourne CFUG -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.comcfaussie%2bunsubscr...@googlegroups.com . For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en. -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.comcfaussie%2bunsubscr...@googlegroups.com . For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en. -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.comcfaussie%2bunsubscr...@googlegroups.com . For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en. -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.comcfaussie%2bunsubscr...@googlegroups.com . For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en. -- E: mark.man...@gmail.com T: http://www.twitter.com/neurotic W: www.compoundtheory.com cf.Objective(ANZ) - Nov 18, 19 - Melbourne Australia http://www.cfobjective.com.au Hands-on ColdFusion ORM Training www.ColdFusionOrmTraining.com -- You