Dave is spot on. If ColdFusion were a complete self contained black box then the suggestion would be valid, but as it relies on an underlying OS, an HTTP server, DBMSs and more, it is the admin's job to manage and understand all of those (and more). The fact that CF deployment and development is easily achieved by less experienced individuals does not mean that less experienced admins should be trusted to keep the server secure.
--- Ben (Sent from a handheld device) > On Mar 26, 2014, at 10:17 AM, Dave Watts <dwa...@figleaf.com> wrote: > > >> What I mean is that Adobe recommands that CFIDE should be moved to a safer >> place, but, after several >> versions, CFIDE is still installed the same way. > > Of course it is. If It were somewhere else, you wouldn't be able to > administer CF after an out-of-the-box install. It's up to you to > understand how web servers and web applications work, and set it up > properly after it's installed. > > Dave Watts, CTO, Fig Leaf Software > 1-202-527-9569 > http://www.figleaf.com/ > http://training.figleaf.com/ > > Fig Leaf Software is a Veteran-Owned Small Business (VOSB) on > GSA Schedule, and provides the highest caliber vendor-authorized > instruction at our training centers, online, or onsite. > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358111 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm