We have those covered as well. I was considering the actual transfer of data.
John -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Dean H. Saxe Sent: Thursday, November 02, 2006 11:36 AM To: discussion@acfug.org Subject: Re: [ACFUG Discuss] CFUNITED-07 Information SSL doesn't address authentication, authorization, data validation, auditing & logging, configuration management, etc. Lots of other ways to screw up security. -dhs Dean H. Saxe, CISSP, CEH [EMAIL PROTECTED] "Great spirits have often encountered violent opposition from weak minds." --Einstein On Nov 2, 2006, at 11:04 AM, John Mason wrote: > You've been connecting to one of the webservices via SSL in some of > the webmail Flex stuff? I think that would cover most of the security > concerns in passing the data between cf and flex. That's probably one > of the better ways, but I would be curious to know the security around > the other possible methods for flex. > > John > > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Precia > Sent: Thursday, November 02, 2006 10:48 AM > To: discussion@acfug.org > Subject: Re: [ACFUG Discuss] CFUNITED-07 Information > > How to write secure code using CF and Flex (so a bit of AS 3.0 or MXML > maybe mixed in) Considerations while passing data between. > > Precia > > > On 11/2/06, Dean H. Saxe <[EMAIL PROTECTED]> wrote: What do > you mean? How to write secure code with Flex? > > -dhs > > > Dean H. Saxe, CISSP, CEH > [EMAIL PROTECTED] > "[T]he people can always be brought to the bidding of the leaders. > This is easy. All you have to do is to tell them they are being > attacked, and denounce the pacifists for lack of patriotism and > exposing the country to danger. It works the same in every country." > --Hermann Goering, Hitler's Reich-Marshall at the Nuremberg Trials > > > On Nov 2, 2006, at 10:02 AM, Precia wrote: > > > Dean, > > > > Can you morph this with Flex in any way? Flex has become the most > > requested topic at MAX and I have a feeling it will be the same at > > the next conference...albeit, CF security is a highly NEEDED topic. > > > > Precia > > > > > > On 11/2/06, Dean H. Saxe <[EMAIL PROTECTED] > wrote: I'm > > hoping to be there this year with a talk (if Michael accepts my > > abstract) and possibly a Writing Secure Code: CFMX class. If you're > > interested in a 2 day version of this class, let me know. It may > > help my management make the decision to offer it. > > > > -dhs > > > > > > Dean H. Saxe, CISSP, CEH > > [EMAIL PROTECTED] > > "I have always strenuously supported the right of every man to his > > own opinion, however different that opinion might be to mine. He who > > denies another this right makes a slave of himself to his present > > opinion, because he precludes himself the right of changing it." > > -- Thomas Paine, 1783 > > > > > > On Nov 2, 2006, at 9:52 AM, Teddy Payne wrote: > > > > > I agree with Precia. I am from D.C. and I can assist in helping > > > making things easier on travel considerations. > > > > > > Teddy > > > > > > > > > On 11/2/06, Precia <[EMAIL PROTECTED]> wrote: > > > If anyone is going to CF United, lets get together. We can make > > > plans for a smooth trip. > > > > > > Precia > > > > > > > > > On 11/2/06, Maya Tulchinsky <[EMAIL PROTECTED] > wrote: > > > > > > CFUNITED-07 is Wed 6/27/06 - Sat 6/30/06 at North Bethesda > Marriott, > > > just outside Washington DC (same great hotel as last year!). > > > > > > http://www.cfunited.com/2007/ > > > > > > Maya > > > > > > We have the perfect Group for you. Check out the handy changes to > > > Yahoo! Groups. > > > ------------------------------------------------------------- > > > To unsubscribe from this list, manage your profile @ > > > http://www.acfug.org?fa=login.edituserform > > > > > > For more info, see http://www.acfug.org/mailinglists Archive @ > > > http://www.mail-archive.com/discussion%40acfug.org/ > > > List hosted by FusionLink > > > ------------------------------------------------------------- > > > > > > > > > > > > > > > > > > > > > ------------------------------------------------------------- > > > To unsubscribe from this list, manage your profile @ > > > http://www.acfug.org?fa=login.edituserform > > > > > > For more info, see http://www.acfug.org/mailinglists Archive @ > > > http://www.mail-archive.com/discussion%40acfug.org/ > > > List hosted by FusionLink > > > ------------------------------------------------------------- > > > > > > > > > > > > -- > > > <cf_payne /> > > > Adobe Certified ColdFusion MX 7 Developer > > > > > > Blog: http://cfpayne.wordpress.com/ Atlanta CFUG: > > > http://www.acfug.org > > > ------------------------------------------------------------- > > > To unsubscribe from this list, manage your profile @ > > > http://www.acfug.org?fa=login.edituserform > > > > > > For more info, see http://www.acfug.org/mailinglists Archive @ > > > http://www.mail-archive.com/discussion%40acfug.org/ > > > List hosted by FusionLink > > > ------------------------------------------------------------- > > > > > > > > ------------------------------------------------------------- > > To unsubscribe from this list, manage your profile @ > > http://www.acfug.org?fa=login.edituserform > > > > For more info, see http://www.acfug.org/mailinglists Archive @ > > http://www.mail-archive.com/discussion%40acfug.org/ > > List hosted by http://www.fusionlink.com > > ------------------------------------------------------------- > > > > > > > > > > > > ------------------------------------------------------------- > > To unsubscribe from this list, manage your profile @ > > http://www.acfug.org?fa=login.edituserform > > > > For more info, see http://www.acfug.org/mailinglists Archive @ > > http://www.mail-archive.com/discussion%40acfug.org/ > > List hosted by FusionLink > > ------------------------------------------------------------- > > > > ------------------------------------------------------------- > To unsubscribe from this list, manage your profile @ > http://www.acfug.org?fa=login.edituserform > > For more info, see http://www.acfug.org/mailinglists Archive @ > http://www.mail-archive.com/discussion%40acfug.org/ > List hosted by http://www.fusionlink.com > ------------------------------------------------------------- > > > > > > ------------------------------------------------------------- > To unsubscribe from this list, manage your profile @ > http://www.acfug.org?fa=login.edituserform > > For more info, see http://www.acfug.org/mailinglists Archive @ > http://www.mail-archive.com/discussion%40acfug.org/ > List hosted by FusionLink > ------------------------------------------------------------- > ------------------------------------------------------------- > To unsubscribe from this list, manage your profile @ > http://www.acfug.org?fa=login.edituserform > > For more info, see http://www.acfug.org/mailinglists Archive @ > http://www.mail-archive.com/discussion%40acfug.org/ > List hosted by FusionLink > ------------------------------------------------------------- ------------------------------------------------------------- To unsubscribe from this list, manage your profile @ http://www.acfug.org?fa=login.edituserform For more info, see http://www.acfug.org/mailinglists Archive @ http://www.mail-archive.com/discussion%40acfug.org/ List hosted by http://www.fusionlink.com ------------------------------------------------------------- ------------------------------------------------------------- To unsubscribe from this list, manage your profile @ http://www.acfug.org?fa=login.edituserform For more info, see http://www.acfug.org/mailinglists Archive @ http://www.mail-archive.com/discussion%40acfug.org/ List hosted by http://www.fusionlink.com -------------------------------------------------------------