> I think this brings up interesting security issues for > virtual hosting companies. In this case, accessing files > with IE would be done using the application server's user. > Thus enabling all of the virtual users to see each other's > files since there is only a single application server.
Well, personally, I've always thought that secure shared hosting was always pretty much a lost cause. I think that the only reasonably safe approach is to use virtual machines - something like VMware's GSX server, for example. While Jochem's setup is probably safe enough for most people, I doubt that many shared hosting providers go to that extreme. It just seems like too much trouble to me, but maybe I'm just too lazy. And when you start using CF in virtual machines, I suspect you might need one license for each VM, which might be a bit expensive. I do remember the "old days", though, when a web server administrator was expected to read every CGI script to ensure that it didn't do anything bad. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ voice: (202) 797-5496 fax: (202) 797-5444 ______________________________________________________________________ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists