ok have blocked your little application.cfm/cfc hack :-)
let me know if you think of anything else.
sadly I cannot block file access without breaking the app, am thinking of
an alternate solution.
On Sun, May 19, 2013 at 4:16 AM, Raymond Camden wrote:
>
> So yeah, block that, and App.cfc of
can;t really lock down that folder or the app itself wont be able to write
to it either, I will think on it
On Sun, May 19, 2013 at 4:16 AM, Raymond Camden wrote:
>
> So yeah, block that, and App.cfc of course. ;)
>
>
> On Sat, May 18, 2013 at 10:11 PM, Raymond Camden >wrote:
>
> > You did
it is on cfmldeveloper.com yes
On Sun, May 19, 2013 at 4:16 AM, AJ Mercer wrote:
>
> Is this on the same server you provide hosting on?
>
>
> On 19 May 2013 10:26, Russ Michaels wrote:
>
> >
> > I was just thinking the other day, wouldn't it be handy if there was a
> > website where you could
But the difference is - you are asking folks to come here and play with
your tool. I could use this to add my own ads to your service or
spam/porn/etc.
On Sat, May 18, 2013 at 10:16 PM, Russ Michaels wrote:
>
> as I just said to Ray, this give you no more access than if you sign up for
> an ac
Is this on the same server you provide hosting on?
On 19 May 2013 10:26, Russ Michaels wrote:
>
> I was just thinking the other day, wouldn't it be handy if there was a
> website where you could just type in some CF code and have it executed
> instantly. this would really make it so much easie
So yeah, block that, and App.cfc of course. ;)
On Sat, May 18, 2013 at 10:11 PM, Raymond Camden wrote:
> You did. But you didn't lock down the code folder. I just wrote an
> Application.cfm file in there.
>
>
> On Sat, May 18, 2013 at 10:09 PM, Raymond Camden
> wrote:
>
>> Do you mind if I try
as I just said to Ray, this give you no more access than if you sign up for
an account yourself and upload files to the server.
On Sun, May 19, 2013 at 4:11 AM, AJ Mercer wrote:
>
> Is Java disabled?
> You server can be shutdown with very little code
>
>
> On 19 May 2013 11:09, Raymond Camden
give it a try and let me know
On Sun, May 19, 2013 at 4:11 AM, AJ Mercer wrote:
>
> Is Java disabled?
> You server can be shutdown with very little code
>
>
> On 19 May 2013 11:09, Raymond Camden wrote:
>
> >
> > Do you mind if I try then?
> >
> >
> > On Sat, May 18, 2013 at 10:09 PM, Russ Mi
go for it.
there is nothing you can do on here than you couldn't do by signing up for
an account on cfmldeveloper.com anyway
Railo is sandboxed by default to stop any cfml code accessing files outsid
ethe webroot, but in addition to thatall the sites on CFMLDEveloper run
Railo in a dedicated Jav
You did. But you didn't lock down the code folder. I just wrote an
Application.cfm file in there.
On Sat, May 18, 2013 at 10:09 PM, Raymond Camden wrote:
> Do you mind if I try then?
>
>
> On Sat, May 18, 2013 at 10:09 PM, Russ Michaels wrote:
>
>>
>> i'm not bothered if you look at the code, b
Is Java disabled?
You server can be shutdown with very little code
On 19 May 2013 11:09, Raymond Camden wrote:
>
> Do you mind if I try then?
>
>
> On Sat, May 18, 2013 at 10:09 PM, Russ Michaels
> wrote:
>
> >
> > i'm not bothered if you look at the code, but yes I have taken measures
> to
>
Do you mind if I try then?
On Sat, May 18, 2013 at 10:09 PM, Russ Michaels wrote:
>
> i'm not bothered if you look at the code, but yes I have taken measures to
> make sure you cannot modify or delete those files :-)
>
>
> On Sun, May 19, 2013 at 4:05 AM, Raymond Camden >wrote:
>
> >
> > I al
i'm not bothered if you look at the code, but yes I have taken measures to
make sure you cannot modify or delete those files :-)
On Sun, May 19, 2013 at 4:05 AM, Raymond Camden wrote:
>
> I also hope you wrote code to prevent me from writing over the file that
> drives this. ;) Took a few secon
I also hope you wrote code to prevent me from writing over the file that
drives this. ;) Took a few seconds to get the contents of that file and
look at how you built this.
On Sat, May 18, 2013 at 10:01 PM, Raymond Camden wrote:
> Russ, what will happen if I do:
>
>
>
>
>
> And put a cflog
if that works for you then great :-)
personally I think that might be a lot of hassle to get Railo Express to
work on a table or smart phone though.
although aside from that I doubt it is risky to install it.
On Sun, May 19, 2013 at 3:59 AM, AJ Mercer wrote:
>
> It is not all that hard to down
Russ, what will happen if I do:
And put a cflog in there as well (which would suck up disk space).
On Sat, May 18, 2013 at 9:59 PM, AJ Mercer wrote:
>
> It is not all that hard to download Railo Express to test code.
> http://www.getrailo.org/index.cfm/download/
>
> These really see
It is not all that hard to download Railo Express to test code.
http://www.getrailo.org/index.cfm/download/
These really seems to be a very risky thing to do.
On 19 May 2013 10:26, Russ Michaels wrote:
>
> I was just thinking the other day, wouldn't it be handy if there was a
> website wh
Try it now
On Sun, May 19, 2013 at 3:37 AM, Rick Mason wrote:
>
> Russ,
>
> Boffo! This is something that the CF world has needed for a long time.
> However I am seeing an error, despite whatever code that I try to run:
>
> key [FILENAME] doesn't exist in struct
> (keys:lastvisit,urltoke
You should turn off that detailed exception info. Showing the full path to
the CFM.
On Sat, May 18, 2013 at 9:26 PM, Russ Michaels wrote:
>
> I was just thinking the other day, wouldn't it be handy if there was a
> website where you could just type in some CF code and have it executed
> instan
Russ,
Boffo! This is something that the CF world has needed for a long time.
However I am seeing an error, despite whatever code that I try to run:
key [FILENAME] doesn't exist in struct
(keys:lastvisit,urltoken,cftoken,sessionid,cfid)
It references a cffile on line 43
Rick
On Sat, May 18,
I was just thinking the other day, wouldn't it be handy if there was a
website where you could just type in some CF code and have it executed
instantly. this would really make it so much easier for testing quick
snippets of code when answering questions on lists or forums, or providing
support in
21 matches
Mail list logo