Regarding security, The argument of justifying CF8 license cost is Railo/BlueDragon with MySQL too hard?
I would start looking towards getting comprehensive contracts written up to protect your ip and liability. No, and its not just from liability by storing sensitive financial data, from the few companies i know of and the many freelancers i have the pleasure of knowing. Protecting yourself from silly lawsuits is one of the biggest priority. Regards, Chong On May 25, 12:30 pm, "SAMARIS Software" <rai...@ozemail.com.au> wrote: > To place a new angle on this discussion, the application is being offered as > a property management administrative solution to businesses in the Property > Management / Real Estate Industry. > > Clients subscribe to the service which is hosted externally. > > The smaller clients would not be able to justify purchasing a copy of cf8 to > run in house with only 3-4 users, hence the need to provide the application > hosted externally > > Some of the larger clients would be able to host the application on their > own servers given their IT infrastructure, however this opens a new set of > concerns that being protecting the ip of the code to prevent the larger > clients choose to copy / use the code and develop their own applications in > house. > > This opens the topic of how a developer effectively protects his code when > the code is placed on the clients server rather than having it hosted > externally, even more relevant when the application developed is > commercialised and ready for use by other potential clients in the given > industry compared to a application that is custom built for a given clients > unique requirements. > > I welcome comment on the above > > Regards > > Claude Raiola > B.Econ (Acc), B.Hot.Mngt. > > Websites:www.AustralianAccommodation.comwww.SAMARIS.NETwww.WebSiteSolutions.com.au > Mobile: 0414 228 948 > > From: cfaussie@googlegroups.com [mailto:cfaus...@googlegroups.com] On Behalf > Of Simon Haddon > Sent: Monday, 25 May 2009 8:34 AM > To: cfaussie@googlegroups.com > Subject: [cfaussie] Re: Security Of Customer Bank Account Details > > I would say that a property management company should be able to afford > their own server so at least they are not sharing with others. Also, you > are probably going to be running in SSL which means you need your own > certificate and IP address. > > It is strange how everyone says not to store the information unless you have > some very safe manner. And I do agree. But ironic how, as a company, I am > willing to have my account details out there for any of my clients who must > store them on God knows what system. I have seen so many invoices with BSB > and Account number emailed to me and credit card details handed out over the > phone it makes me wonder. > > Probably doesn't help much but I just see the irony of it. How individuals > can be so protective, and rightly so, but yet willing to give out > information at the same time. > > 2009/5/24 Steve Onnis <st...@cfcentral.com.au> > > that sort of information should not be stored on a shared server like that > and should be heavily protected on the network, and really shouldnt even be > accessible from the internet like a shared server would be. > > _____ > > From: cfaussie@googlegroups.com [mailto:cfaus...@googlegroups.com] On Behalf > Of SAMARIS > > Sent: Sunday, 24 May 2009 3:08 PM > To: cfaussie@googlegroups.com > > Subject: [cfaussie] Re: Security Of Customer Bank Account Details > > Can you please expand on your comment steve. The application generates > owners statements an creates the bank aba file for eft processing > > Regards > > Claude Raiola > SAMARIS.net Software > Email: i...@samaris.net > Mobile 0414 228 948 > Website:www.SAMARIS.net > > _____ > > From: "Steve Onnis" > Date: Sun, 24 May 2009 14:53:46 +1000 > To: <cfaussie@googlegroups.com> > Subject: [cfaussie] Re: Security Of Customer Bank Account Details > > you shouldnt be doing it in the first place > > _____ > > From: cfaussie@googlegroups.com [mailto:cfaus...@googlegroups.com] On Behalf > Of SAMARIS Software > Sent: Sunday, 24 May 2009 2:45 PM > To: cfaussie@googlegroups.com; coldfusion-ho...@yahoogroups.com > Subject: [cfaussie] Security Of Customer Bank Account Details > > Hi, > > A property management application I am developing will soon have 1,000's of > property owners bank account details stored in the sql database. > > As the application is hosted with an external cf hosting service the > question is how best to protect the bank account details stored on the sql > server from use in the very unlikely event that the sql server is hacked > into and the records are then accessed by an unauthorised third party. > > I look forward to your comments suggestions and discussion on this topic > > Regards > > Claude Raiola > B.Econ (Acc), B.Hot.Mngt. > > Websites:www.AustralianAccommodation.comwww.SAMARIS.NETwww.WebSiteSolutions.com.au > Mobile: 0414 228 948 > > -- > Cheers > Simon Haddon > > Woman loves feeling danger and speed. That is why woman wants man. They get > a speed rush that is the most dangerous of all. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "cfaussie" group. To post to this group, send email to cfaussie@googlegroups.com To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en -~----------~----~----~----~------~----~------~--~---
