Don't allow this. They should be using the proper file system access points within CF like cffile/cfdirectory. And you should be using sandbox security and locking down CF. Don't have it run as "local system" account. There is no reason for a developer to be doing this.
John [email protected] On 1/18/12 3:09 PM, Jennifer Lehmann wrote: > I have a developer who sent me the following: > > When the user clicks the button to delete an attachment from the file server > â we first switch its attribute from readonly so that coldfusion can then > delete it. > > We are getting an error when trying to initiate a com object - the line of > code is > fso = CreateObject("COM", "Scripting.FileSystemObject"); > > We do not use Sandbox Security. How do you enable CFObject so this can be > done? > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-server/message.cfm/messageid:6973 Subscription: http://www.houseoffusion.com/groups/cf-server/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-server/unsubscribe.cfm
