Thanks CoolJJ, An excellent resource (foundstone.com), there is a pdf file that explains "hacme shipping" here:
http://www.foundstone.com/resources/whitepapers/hacmeshipping_userguide.pdf Andrew. > Rick, > Never, never, ever trust data coming from the client side. It is very > easy to bypass client side validation with a hacker tool like > webscarab. Always validate client supplied data on the server side. > > A good resource for web app security is www.owasp.org and would do a > better job of explaining security than I. Also, http://www.foundstone. > com/ has an educational tool called hacme shipping written in > coldfusion that teaches secure programming. > CoolJJ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Upgrade to Adobe ColdFusion MX7 Experience Flex 2 & MX7 integration & create powerful cross-platform RIAs http://www.adobe.com/products/coldfusion/flex2/?sdid=RVJQ Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:275392 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4