Let me add this: Who Patches Your ColdFusion Servers? http://www.trunkful.com/index.cfm/2014/3/7/Who-Patches-Your-ColdFusion-Servers
Many companies dont have dedicated server IT staff and are either hoping their internally hosted servers are being updated by one or more of their devs. Some are thinking that their hosting provider is doing the updates. The truth is that unless you have a service agreement with your hosting provider that specifies ColdFusion updates they most likely are not doing them. If you are reading this and you are the owner of the company you should be able to answer, without doubt, the question above Who patches your ColdFusion servers? and you can verify that by asking them if the servers are up to date. Regards, Wil Wil Genovese Sr. Web Application Developer/ Systems Administrator CF Webtools www.cfwebtools.com wilg...@trunkful.com www.trunkful.com On Mar 17, 2014, at 1:58 PM, Justin Scott <leviat...@darktech.org> wrote: > > http://krebsonsecurity.com/2014/03/the-long-tail-of-coldfusion-fail/ > > Patch your servers people. Follow the lockdown guide while you're at it. > > CF 10: > https://www.adobe.com/content/dam/Adobe/en/products/coldfusion-enterprise/pdf/cf10-lockdown-guide.pdf > CF 9: > http://www.adobe.com/content/dam/Adobe/en/products/coldfusion/pdfs/91025512-cf9-lockdownguide-wp-ue.pdf > > > -Justin > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357963 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm