Just a general warning that you can do things like this on a shared host, as most people don't realise, and yes to say that find a host that has CF properly secured (yes like us). A Lot of people want everything enabled and don't really consider the consequences. And even with a secured server, some things (like CFDUMP) will still work and allow you to do things like the below.
Personally I now store all my private data in request scope and not application variables for this reason. Russ -----Original Message----- From: Dave Watts [mailto:[EMAIL PROTECTED] Sent: 05 December 2006 00:48 To: CF-Talk Subject: RE: getSessionList.cfm UDF > > > Another reason not to use shared hosting and another example of > > > how CFMX is just not suitable for shared hosting. > > > > In any case, can't you disable CreateObject("java",...) with > > security sandboxes? > > Yes you can, and we do, but some hosts don't, so I'm just giving a > word of warning to thos eon a shared host who do have > CreateObject(java) enabled. I'm confused; is your word of warning that people should only use hosts that have properly configured their servers (like you), or that they shouldn't use you either? Because most people would likely take the latter meaning from your first response. It's fine with me either way, since I don't use shared hosting. > Also, you can still CFDUMP the application scope with no application > name and see all the application vars. How else would you use CFDUMP to see the application scope? Or are you saying you can use CFDUMP to see the application scope of other applications? Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Create robust enterprise, web RIAs. Upgrade & integrate Adobe Coldfusion MX7 with Flex 2 http://ad.doubleclick.net/clk;56760587;14748456;a?http://www.adobe.com/products/coldfusion/flex2/?sdid=LVNU Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262851 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4