No I am not arguing about it, I am saying that there is no reason that ColdFusion could not do what I said it could. It only means that with the release of ColdFusion 9, it is more of a possibility that SQL Injection will become a thing of the past for ColdFusion.
It doesn't excuse the fact that when cfqueryparam was introduced, it couldn't have done something like this a long time ago. The argument came about because people believed it was not possible for ColdFusion to do this stuff under the hood, the reality was that it could have a long time ago. It just never was a request or thought about before. If you read anything I have said, you would see I am not arguing about it. But making a statement that it was and could have been possible. Nothing more nothing less. It was everyone else who disagreed, well almost everyone else. -- Senior Coldfusion Developer Aegeon Pty. Ltd. www.aegeon.com.au Phone: +613 9015 8628 Mobile: 0404 998 273 -----Original Message----- From: James Holmes [mailto:[EMAIL PROTECTED] Sent: Sunday, 17 August 2008 12:15 PM To: CF-Talk Subject: Re: SQL injection attack on House of Fusion So for six months you've known the feature is coming yet you're still arguing about it now? Do you just like wasting people's time? On Sat, Aug 16, 2008 at 11:37 PM, Andrew Scott <[EMAIL PROTECTED]> wrote: > Man your about 6 months late with that news.... > -- mxAjax / CFAjax docs and other useful articles: http://www.bifrost.com.au/blog/ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;203748912;27390454;j Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:311134 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4