FYI, our recent break-in was through the fckeditor bug that we didn't have patched. Look for a directory called "Userfiles" ...
We migrated to a whole new server rather than upgrading :) There is no need to eliminate cfajaximport and cfform and other such things, just set up a virtual directory pointing to the /cfide/scripts folder and call it something (maybe /cfscripts/ or /cf_scripts/ or /wackamole/ - whatever). Then set that up in your coldfusion administrator, and all the cfforms and cfajaximports and whatnot all still work just fine. The lockdown guide goes into detail about this. Rick ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:354830 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
