Hi
We are planning to migrate from Coldfusion Mx 6.1 to Coldfusion 8
While we deploying the CAR file created from MX 6.1 into Coldfusion , None of
the SQL datasource is working . Log file containts the below erorr message
Error occurred while updating datasources:tedy
There's a FREE 2 day ColdFusion / Flex conference coming up in two weeks
(September 6th 7th) in Bloomington, Indiana (close to Indy):
http://bflex.info/
I'm going, but wanted to find out if if there's anyone in the Nashville, TN
area that was interested in going so that we can share gas money
I know this was months ago, but I've just had the same problem and the correct
answer was google hit number 41...
in CF8 (but not CF7) the header and footer are forced within margintop and
marginbottom. so no matter how big you make your text and images, if you leave
the default margins
I'm trying to increase the allowed memory for CF to accommodate large file
uploads. I've experimented with various settings, but can't seem to correlate
them with the file size I'm trying. Currently trying to upload a 300Mb file.
Have the following settings in the Java and JVM window: Maximum
In CFAdmin if you go to Settings and scroll down to Request Size Limits,
what are your settings there?
I believe the Maximum Size of Post Data would need to be at least 300Mb.
Kelly
Steve Moore wrote:
I'm trying to increase the allowed memory for CF to accommodate large file
uploads. I've
I'm trying to increase the allowed memory for CF to
accommodate large file uploads. I've experimented with
various settings, but can't seem to correlate them with the
file size I'm trying. Currently trying to upload a 300Mb
file. Have the following settings in the Java and JVM window:
Yeah, the setting was part of 7.
Steve, to clarify, log into your ColdFusion Administrator for that server.
Click on the Settings menu under Server Settings
There should be two settings in there that might affect you:
Near the top of the page there is a setting called Maximum size of post
data
I am still getting around 50 to 75 attacks a day on about 20 of my websites. I
applied the solution from JOCHEM that aborts the attach in the application.cfm
file and then sends me an email.
They just keep coming from different IP addresses so it is useless to do
anything other than wait for
I know I am setting myself up for another Query too complex issue, so before
I start I thought I would ask for suggestions. I run into this when I have to
reference two different Access databases that are Client imposed (don't ask).
Basically, I have to use one for active data and one to show
Greetings!
I'm having a problem with cfgrid and I need some assistance. Whenever I
try to submit an HTML format grid with the enctype=multipart/form-data
attribute applied to the cfform tag, I receive The submitted cfgrid
form field is corrupt (name: __CFGRID__MYTEST__MYGRID value:
Have you tried:
AND Works.ThisInventory not in
(#listQualify(valueList(getActiveWorks.ThisReference),')#)
??
Dave
-Original Message-
From: David Moore [mailto:[EMAIL PROTECTED]
Sent: Wednesday, August 20, 2008 1:18 PM
To: CF-Talk
Subject: Query Too Complex for Access?
I know I am
No I haven't.
What you are saying is that I should use valueList to build a full list from
all values in the getActiveWorks query and then listQualify to see if any
variable matches.
Thanks David! I will give it a shot.
Does anyone else know of any other ways?
David G. Moore, Jr.
I also had a concern about thread safety; it's caching the java.util.
regex.Matcher object in Application scope, and calling Application.
injChecker.reset(testvar) for each url/form/etc variable -- seems like
Matcher.reset() changes state of the cached Matcher object?
Thanks for pointing
Acutally, the first part is correct. The listQualify() function actually
just places 'single quotes' around each of the values in your valuelist
since that would be required by the DB.
List qualify doesn't check any variables.
I noticed you had a stray /cfif tag. Were you missing a cfif
I am currently using the SQLprev.cfm from Jochem to stop the onslaught of
superfluous bandwidth suckage from my server, but was wondering what the
difference would be with this one. I am not looking to start a my SQL
Injection blocker is better than yours, yet trying to educate myself on just
I am currently using the SQLprev.cfm from Jochem to stop the onslaught
of superfluous bandwidth suckage from my server, but was wondering
what the difference would be with this one.
Since I am not familiar with his, I cannot say what the difference would be. I
did include URL, form, cookie
I noticed that after I hit the 'send' button. I had a cfif to check if there
were actual records before running the statement. I didn't think I needed to
show all that, so I took it out, but left the stray end code.
The code works well. I haven't tested it at a lot of values though. This will
At one point my browser hung and only revealed an Email Jim hyperlink.
This was in the address bar
http://www.mypersonalbrilliance.com/about/;. I clicked through them 20
or so times after that without a problem.
-Original Message-
From: Mark Leder [mailto:[EMAIL PROTECTED]
Sent:
I am currently using the SQLprev.cfm from Jochem to stop the onslaught of
superfluous bandwidth suckage from my server, but was wondering what the
difference would be with this one. I am not looking to start a my SQL
Injection blocker is better than yours, yet trying to educate myself on
David,
I don't know if it will or not, you will just need to test. I'm sure there
is some upper limit as to how many bytes you can send in a call to the DB,
but I'm also betting that's driver dependent.
Oh, if there is a possibility that getActiveWorks might be empty, you will
want this:
cfif
Tried w/ FF3, IE7 and Safari 3.1.2 for Windows. Had no problems.
Mark Leder wrote:
Hi all,
We're having reports of links not being clickable in a site:
Take a look at this URL (which has been live for 3 years):
http://www.mypersonalbrilliance.com
Also, look at this URL
When you say Update Your Code, are you saying using cfqueryparam? But even
so, the SQL injection still will use up countless resources instead of cutting
it off early. So, go back and fix 1,000's of lines of code I have developed
over the last 'upteen' years or stop it before it starts? Is this
When you say Update Your Code, are you saying using cfqueryparam?
Yes, that's what he is saying.
so, go back and fix 1,000's of lines
of code I have developed over the last 'upteen' years or stop it
before it starts?
Because if you don't, you are putting a LOT of faith in these
David Moore, Jr. wrote:
Not trying to pick a fight, becuase I am sure you have forgotten more code
than I will ever know (seriously) and I am probably just being lazy
(seriously), but is cfqueryparam something a lot of programmers really use?
I have never seen cfqueryparam used on any tags
Not trying to pick a fight, becuase I am sure you have forgotten more code
than I will ever know (seriously) and I am probably just being lazy
(seriously), but is cfqueryparam something a lot of programmers really
use? I have never seen cfqueryparam used on any tags I have purchased
or
And this is where I am. I have been using CF since 4.5. Very Scary. Glad I have
found this list. I am sure to learn a lot. I will try to read and not bother.
Thanks for the SMACK DOWN. I will start to write it in and become more learned.
I can say, just in the last weeks since joining I have
When you say Update Your Code, are you saying using cfqueryparam? But
even so, the SQL injection still will use up countless resources instead of
cutting it off early. So, go back and fix 1,000's of lines of code I have
developed over the last 'upteen' years or stop it before it starts? Is
As someone who was hit by the attack on the first day. I will say I've
used cfqueryparam for years and yet I had a handful of pages with old
code where I was not using cfqueryparam. It just takes one page that's
publically accessible to do damage. Once I fixed the pages in question,
try as
Does this thing just raise it's ugly head every now and then
and go away for a while? This is the first I have seen of it
on my server.
This is the first large-scale automated SQL injection attack. Automated
attacks have been around for a long time, as have SQL injection attacks.
Honestly,
Justin,
I certainly don't feel picked on. I feel blessed to have a place where I can
learn from people who do know so much. And you are right. I (we) only seem to
learn under fire. I am a one man business owner in a small town with limited
resources and time. 10 hour days, work weekends, what
is cfqueryparam something a lot of programmers really use?
Only the good ones. ;)
Thanks,
Eric
David Moore, Jr. wrote:
When you say Update Your Code, are you saying using cfqueryparam? But
even so, the SQL injection still will use up countless resources instead of
cutting it off
Right on Dave... That's a point I've been making as well.
It is the SQL injection attacks that don't obviously do anything that are
more insidious. For those of you who have found your sites vulnerable, this
attack is not the one that should be keeping you up at night. Instead, it
should be
Eric,
A good answer might be it is now :)
-Original Message-
From: Eric Cobb [mailto:[EMAIL PROTECTED]
Sent: Wednesday, August 20, 2008 4:59 PM
To: CF-Talk
Subject: Re: SQL injection attack on House of Fusion
is cfqueryparam something a lot of programmers really use?
Only
The only way I found the SQL Injection Attack was my server kept crawling to a
dead hault. I looked in SeeFusion (some softwear I purchased that lets me see
what is going on live with the websites) and I noticed that the sites Total
Time just kept going up and never resolving, basically every
Well, it is my goal :) not there yet... Subject: Re: SQL injection attack on
House of Fusion From: [EMAIL PROTECTED] To: cf-talk@houseoffusion.com Date:
Wed, 20 Aug 2008 16:59:26 -0500 is cfqueryparam something a lot of
programmers really use? Only the good ones. ;) Thanks, Eric
David
So, I have found like the Mother Load of good programmers who really care
about Cold Fusion and take the time to do it right? Becuase every peice of code
I have ever gotten from Adobe Exchange or Purchase from other sites has never
had cfqueryparam. And I know Ben is going to shoot me, because
I certainly don't feel picked on. I feel blessed to have a place where I can
learn from people who do know so much. And you are right. I (we) only seem to
learn under fire. I am a one man business owner in a small town with limited
resources and time. 10 hour days, work weekends, what is
So, I have found like the Mother Load of good programmers who really care
about Cold Fusion and take the time to do it right?
Pretty much. The skill level on the list varies from can express the
meaning of life in ColdFusion to what's a database so your experience
may vary. I'd like to
Consider me connected. At the same time, I will try not to just suck the life
out of the list and provide substance where I can. I was a morning radio
announcer for 20 years before becoming a web programmer, so if you can't
remember the name of that song or artist - just ask. :)
As for the
When you say Update Your Code, are you saying using
cfqueryparam?
Yes. That is the only mechanism guaranteed to prevent known and future SQL
injection attacks. Using a filter can protect you from the current attack
long enough for you to fix your broken code.
But even so, the SQL injection
A while ago I read a totally rivetting book called The Art Of
Intrusion by Kevin D Mitnick, the legendary hacker who was sent to
jail for his intrusion exploits.He runs a security company now,
that tests you security and reports back on how well you've done.
He says one of the most common
http://cfrecruiter.blogspot.com/
~|
Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to
date
Get the Free Trial
http://ad.doubleclick.net/clk;203748912;27390454;j
Archive:
Don't feel bad, David. I am a freelance CF programmer. I spend most
of my time working on bug fixes or feature enhancements on code
written by others.And the vast majority of files I work on have no
cfqueryparam.
Most of the code I work on really needs re-writing from scratch it's
so
Does anyone else know of any other ways?
Plenty of them, but no one is better ;-)
~|
Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to
date
Get the Free Trial
Hi,
My mission is to copy the file directly from a sharepoint directory (which can
only be accessed through url path like
http://sharepointserver/docs/getfile.doc) into the coldfusion application
server path (defined by mapping)
Issue is I tried using the cffile tag for it but I guess cffile
My mission is to copy the file directly from a sharepoint
directory (which can only be accessed through url path like
http://sharepointserver/docs/getfile.doc) into the coldfusion
application server path (defined by mapping)
Issue is I tried using the cffile tag for it but I guess
Is there a decent Coldfusion IDE out there for Linux?
And please don't say CFEclipse because it's just broke! The line numbers in
the gutter do not display and I have seen the open tickets for this issue in
their bug tracker and they have closed them with a won't fix!
On Wed, Aug 20, 2008 at 6:01 PM, Jesse Beckton [EMAIL PROTECTED] wrote:
Is there a decent Coldfusion IDE out there for Linux?
And please don't say CFEclipse because it's just broke! The line numbers
in the gutter do not display and I have seen the open tickets for this issue
in their bug
When eclipse breaks for me (like the recent JVM-1.6.whatever issue)
i go back to gedit (and tell gnome to colour .cfm files like html).
really there are only two IDEs for Coldfusion on any platform -
dreamweaver and eclipse. neither were built with cf in mind, so neither
of them are great. i
I run CFEclipse on Linux, and its no issue for me?
Ubuntu 8.04, Eclipse 3.4.0, Java 1.6.0_06-b02, CFEclipse 1.0.3
Mark
On Thu, Aug 21, 2008 at 11:01 AM, Jesse Beckton [EMAIL PROTECTED] wrote:
Is there a decent Coldfusion IDE out there for Linux?
And please don't say CFEclipse because it's
Hey Dave Watts,
Can you use cfhttp to add/delete/update collection configuration in a Google
mini? For example when we add a new collection on one of our systems can we
use cfhttp to update the other or do we need to do it manually thru the admin
console?
Sorry Charlie but that fix does not fix!
Luckily I came across another thread that provides a fix, you have to edit a
file under your workspace, I would imagine that if you ever change your
workspace you would have to make the same change there as well.
Um... it's been changed to won't fix
Maybe I'll try and run Homesite in wine?
~|
Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to
date
Get the Free Trial
http://ad.doubleclick.net/clk;203748912;27390454;j
Archive:
right... with the recently released beta, you need to implement the fix you
just mentioned. that's also referenced on the wiki at
http://trac.cfeclipse.org/cfeclipse/wiki/KnownIssues#Missinglinenumbers
it might take some tweaking, but given what you get for the price, i think
it's worth the
Hello everyone. I am stuck and am hoping someone here can help.
I am trying to install CF8 x64 on a Windows Server 2008 x64 box. Unfortunately,
The installer hangs when trying to install the web connectors.
Before the install, I disabled Windows' firewall. I also made sure that ISAPI
Filters
Thank you all. I managed to sort it out. I tried various methods to solve the
problem, but the hidden field method worked out best for me. THanks
~|
Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to
2008/8/20 s. isaac dealey [EMAIL PROTECTED]:
Have the onTap framework plus ORM and other plugins installed and
running inside of 5 minutes, with no coding. And no webserver mapping
(re: FarCry).
Worth noting that you've been able to run FarCry direct from the
webroot since the release of 5.0
P.S. Speaking of Smack Down's. Mary Jo's got a great right cross :) Go
get'em girl!
LOL, actually I am a pacifist at heart and always try to not lose my temper
(serves me well with customers, particularly the endlessly annoying ones!)
As for not knowing what cfqueryparam is and how to
Eric is pretty good at the Smack Down too, Eric The Great takes David
the Geek over the ropes and into the first row of chairs! (Yes, I am
from the South and everything references Wrestling or Nascar)
Here's another smack down for youit would be nice if you could remove all
the extra
Mary Jo,
Sorry. Didn't see all that. First time using this kind of post. Here's
another smack down for youit would be nice if you could remove all the
extra quoted stuff on your poststake a look at the online web archives, it
really makes a mess of the thread! Will do better in the
Actually I am a pacifist at heart and always try to not lose my temper (serves
me well with customers, particularly the endlessly annoying ones!)
LOLOL. I am actually a moderately conservative liberal. I believe in loosing my
temper only when I know I can't find it.
As for not knowing what
Hi
when i try to access the web servies it gives the below error
Web service operation RetrieveDocument with parameters
{appUserID={_CISWS2},DocumentNumber={189425},ProfileForm={EKRIS_LAD_CPD_PF},DMlib={EKRIS},userID={_CISWS2}}
cannot be found.
Can someone help me how to acess the ws
David Moore, Jr. wrote:
I am currently using the SQLprev.cfm from Jochem
The what from whom?
Jochem
~|
Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to
date
Get the Free Trial
OK. I thought it was from you. I was sent an email with the link to SQLprev.cfm
in an email and they referenced I use your suggestion in the email as well. I
stuck the two together. David Moore, Jr. wrote: I am currently using the
SQLprev.cfm from Jochem
Jochem Wrote? The what from
I'm using WhosOn, an IIS server monitor. It does an auto look up on the
location of the IP and I can also set it up to record alerts for keywords,
such as DECLARE.
www.whoson.com
-Original Message-
From: Brad Wood [mailto:[EMAIL PROTECTED]
Sent: 09 August 2008 18:37
To: CF-Talk
This is totally off topic in this list, but I'll make this comment and
that's an end to it.
Your expression asked for rape defies the logic of your argument. Asked
for rape would mean she asked for sex and would therefore be a consenting
adult, ie, not a rape victim.
Overall a really bad and
Hey Dave Watts,
Can you use cfhttp to add/delete/update
collection configuration in a Google mini?
For example when we add a new
collection on one of our systems can we
use cfhttp to update the other or do we
need to do it manually thru the admin
console?
Hey, Kevin!
Yes, you can!
67 matches
Mail list logo