Probably loads of options open to you, reverse proxy, internal IP only. In
our case we use the latter and can. Only be accessed via VPN.
You can still map the other things you require without exposing the whole
IDE.
This e-mail is from Reed Exhibitions (Gateway House, 28 The Quadrant,
Along with what Rick Rob suggested, you can also have CFIDE work via
non-standard port. So you could have something like:
http://www.mysite.com:8600/cfide/administrator/index.cfm
That way its not listen via port 80. Couple that with the suggestions
that were given before and I think you'll be
Another method I employ on top of the others mentioned, is to have the web
server listen for a domain that has no DNS server, and edit my HOSTS file to
point to the correct IP address. A little bit of security by obscurity on
top of the other methods mentioned.
On 2/25/07, Rey Bango [EMAIL
But that would still mean it is insecure. It could stil be reached by typing
in the visible IP (which I assume in this case is still public facing over
normal means)
This e-mail is from Reed Exhibitions (Gateway House, 28 The Quadrant,
Richmond, Surrey, TW9 1DN, United Kingdom), a division
On 2/25/07, Robertson-Ravo, Neil (RX) [EMAIL PROTECTED]
wrote:
But that would still mean it is insecure. It could stil be reached by
typing
in the visible IP (which I assume in this case is still public facing over
normal means)
Not if you're using host headers.
I don't have *ANY* web
I do something similar to this. Non of my CF sites are in Inetpub. The default
site goes to c:\mycfcode or somethign like that. I set up a specific subdomain
for the CF Administrator and that's the only site that goes to Inetpub with a
web page that says only hello. No dir listing enabled. You
Not if you're using host headers.
I don't have *ANY* web sites not set up with host headers on
my IIS setup at work, so going to the IP address by itself
doesn't do any good at all, you just get a no web site
configured by going to the IP address.
I wouldn't recommend relying on Host
What do most people do to secure their CFIDE directory? How
do you prevent people from going to
http://your_server_ip/cfide/administrator
and trying to hack your server? I've read various methods
such as moving the cfide folder, or having it only accessible
by using ColdFusions
On 2/25/07, Dave Watts [EMAIL PROTECTED] wrote:
I wouldn't recommend relying on Host headers, since they can easily be
sent
from the browser.
True, in fact that's how they always get sent :) However, I was referring
to the previous post about actually using a domain that doesn't actually
I also don't know of any overhead...
This e-mail is from Reed Exhibitions (Gateway House, 28 The Quadrant,
Richmond, Surrey, TW9 1DN, United Kingdom), a division of Reed Business,
Registered in England, Number 678540. It contains information which is
confidential and may also be privileged.
Why not? What doesn't work with host headers and SSL? We run multiple
SSL host headers per box with our intranet applications (on IIS). It's
truly a pain the sane world shouldn't be subjected to, but it can happen.
Matthew Williams
Geodesic GraFX
www.geodesicgrafx.com/blog
Rick Root wrote:
AFAIK, host headers do not work with SSL as they are encrypted and in turn
the webserver will never know what you are calling.
If you run SSL you need to have a dedicated IP for them (and then a host
header will work, kind of). Running multiple sites off the same IP wont
work with SSL
I think
I have a page that all it has on it is an image that is being placed via CSS.
When I preview in Firefox or Opera I am getting a request to authenticate my
credentials. If I remove the image (Remove the div) then that does not happen.
Any ideas? This is really irritating.
style type=text/css
We had to do this due to our load balancer. The downside is it required
*.domain.com CERTS. And manually editing the metabase.
Matthew Williams
Geodesic GraFX
Robertson-Ravo, Neil (RX) wrote:
AFAIK, host headers do not work with SSL as they are encrypted and in turn
the webserver will never
Ok...even weirder. I can switch images and the problem goes away, but if I
put the same image back voila there we go again. This is really starting to
peeese me off.
Doug B.
- Original Message -
From: Doug Brown [EMAIL PROTECTED]
To: CF-Talk cf-talk@houseoffusion.com
Sent: Sunday,
Sounds like there is an htaccess file (or similar) in the directory
where the image resides.
-Ryan
Doug Brown wrote:
Ok...even weirder. I can switch images and the problem goes away, but if I
put the same image back voila there we go again. This is really starting to
peeese me off.
Doug B.
There is a free tool for SQLServer2005 at
http://sqlmanager.net/products/mssql/manager/.
It's called EMS SQLManager Lite.
The Lite part means it doenst have some features on it, but nothing
that would worry us for what we do. The bits taken out are for
professional DBAs and what's left is fine
or is it this:
http://www.harrisfamily.net.nz/devblog/index.cfm/2007/2/9/Firefox--Enter-username-and-password-for--at-httplocalhost--Driving-me-CRAZY
Sounds like there is an htaccess file (or similar) in the directory
where the image resides.
-Ryan
Doug Brown wrote:
The most common reason for this performance problem is:
1) migration from CF5 (unicode datasource setting gets set to 'true' - table
scan against varchar - known issue - see #2)
2) having Enable Unicode for data sources configured for non-Latin characters
ON.
If you're using unicode or think
IIS 6 only lets you do it with wildcard certificates... *.domain.com - so
you couldn't use hostheaders with different domains. Plus, wildcard certs
are usually expensive!
Rick
On 2/25/07, Matthew Williams [EMAIL PROTECTED] wrote:
We had to do this due to our load balancer. The downside is
Ah. We're allowed to issue our internal certs from Domino, so no added
expense there ;). Just the pain in getting it to work (and documented).
Matthew Williams
Geodesic GraFX
www.geodesicgrafx.com/blog
Rick Root wrote:
IIS 6 only lets you do it with wildcard certificates... *.domain.com - so
Stephen Dupre wrote:
The most common reason for this performance problem is:
1) migration from CF5 (unicode datasource setting gets set to 'true' - table
scan against varchar - known issue - see #2)
2) having Enable Unicode for data sources configured for non-Latin
characters ON.
isn't
Just got a quick/easy question to Rick Root or anyone who knows.
I am currently using Rick's ImageCFC. Using the getImageInfo method, it
returns a numeric equivalent to jpg (5) or gif(13). I noticed that the CFC
uses the standard getType() method. Does anyone know where I can lookup the
What is the easiest way to do a cflocation back to the calling page?
Rick Colman
~|
Deploy Web Applications Quickly across the enterprise with ColdFusion MX7
Flex 2.
Free Trial
http://www.adobe.com/products/coldfusion/flex2/
assuming there -is- a calling page...
cfif len(trim(cgi.http_referer)) GT 0
cflocation URL=#cgi.http_referer# addtoken=no /
/cfif
On 2/25/07, Richard Colman [EMAIL PROTECTED] wrote:
What is the easiest way to do a cflocation back to the calling page?
Rick Colman
25 matches
Mail list logo