Re: Sudden error with CFHTTP ans SSL
Payments were getting processed but the results confirmation didn't work. This is on Coldfusion 8. That was exactly the problem, on CF 9 also. the certificate needed is the Verisign G5 certificate In my case, the certificate I got from the Paypal site was a Symantec certificate. That is probably the problem: Paypal must have moved from Verisign to Symantec, which is logical since both Paypal ans Symantec are owned by eBay. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:360368 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Sudden error with CFHTTP ans SSL
you need to import the certificate to the java cacerts as a trusted certificate to by-pass the security matching. That was the trick. I imported the Paypal certificate and now it works. Thanks a lot. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:360349 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Sudden error with CFHTTP and SSL
Hi, I have an application under CF 9 with a paiment module using Paypal. At the end of the process, Paypal acknowledges the paiement and my app calls a Paypal page to validate the whole operation. This is done with a CFHTTP call This application has been working fine for years with no modification, bur all of a sudden starting March 23rd, I get this error: I/O Exception: peer not authenticated It appears to be an error with the SSL certificate, but how come ? The Paypal site is verified by Verisign. What ca I do? ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:360320 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Sudden error with CFHTTP ans SSL
Hi, I have an application under CF 9 with a paiment module using Paypal. At the end of the process, Paypal acknowledges the paiement and my app calls a Paypal page to validate the whole operation. This is done with a CFHTTP call This application has been working fine for years with no modification, bur all of a sudden starting March 23rd, I get this error: I/O Exception: peer not authenticated It appears to be an error with the SSL certificate, but how come ? The Paypal site is verified by Verisign. What ca I do? ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:360318 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Test
Yes, but apparently it was down for several hours. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:360326 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Sudden error with CFHTTP ans SSL
Could be PayPal updated their SSL It must be the problem, because I have other paiement services and they have no problem. I'm trying your suggestion, thanks. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:360328 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Test
Is this list working? ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:360322 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: (ot) JavaScript detecting foreign scripts
I am looking to consult with that person off-list Please don't do it off-list, several of us could be interrested. I developped a client side javascript error trackink tool and it helped me a lot to debug my scripts, but I get many errors happening in foreign JS scripts. I fixed my program to detect 5 or 6 of them and now the system is almost perfect. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:360179 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Eclipse CFEclipse
BTW, I have invites to anyone who wants to try Google Inbox. Yes, you too can have the opportunity to reply to seven year old threads. This one also is at least 7 years old ;-) Any one can get a Gmail address, no invite is necessary ;-) ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359763 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Localizing cffileupload
Hi, I'm running some tests on tag cffileupload. Some labels, like Add Files, Clear All... can be supplied in different language in attributes, but some others, like File Name, Size (KB), ... cannot. Has someone find a way to completely localize the tag? Thanks. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359719 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: FW: CF9.02 administrator hack
There's no reason that content can't be injected at serve time. In this case, there would be a difference in the files delivered to the visitor. IMO the hack is in the browser, not on the server. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359626 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: FW: CF9.02 administrator hack
but why would it just appear on a login page for the cfadmin? Who knows what may happen or not happen in some hacker's mind ? ;-) Perhaps it looks for specific form field names ... especially input fields of type PASSWORD! The hacker may be more interested in getting access to the CF Administrator where he could do much more harm. I have implemented in my system a Javascrip error log, and you can't imagine how much errors I get in code not even on my server. There are plenty of scripts added to every page by hacked browsers, for any purpose, generaly add trackers etc. And I only track errors, not scripts that cause no errors. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359630 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: FW: CF9.02 administrator hack
One is that, while it doesn't show up in the view source for a given page, a JS library referenced in the page has been compromised to rewrite page content. Of course, this is quite possible in theory, however it would imply that the hacker has already hacked the server, and one could ask what he is still trying to hack. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359631 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: cfqueryparam EncodeForHTML
Like querying malicious data and using it in another cfquery without cfqueryparam. As an extra safety feature, if your application does not use multiSQL statements at all, and depending on the type of database engine used, you could also streatly deactivate the multi statement facility. If you're using an Access database, you don't even have to deactivate it: there is NO multi statement facility. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359560 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CF10 creating extra CFID/CFTOKEN cookies at the domain level
I eventually found that browsers were losing the CFID/CFTOKEN values and as a result could not locate the session variables Actually, browsers are not losing cookies and do not locate session variables. Session variables are managed by ColdFusion. IMO the problem is that when CF receives TWO CFID/CFTOKEN values from ONE cookie, it does not recognize it as a valid CFID/CFTOKEN. It will then create a new session and loose the whole previous session variables. This new session will replace only one of the two values in the cookie and the problem continues. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359498 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Adobe is just a spammer now
I downloaded the flash installer, then ran the installer, and it went right ahead and installed two items - the flash player and then without pause the McAfee crap. I confirm, I executed directy the installer and I had no opportunity to uncheck McAfee. Only after it failed, BECAUSE OF McAfee, I was directed to another procedure where I could uncheck McAffee. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359493 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Why this regex takes so long?
Hi, I'm having a problem with a scheduled task that chokes my server.
Its role is to analyse bounced messages.
I have been able to identify where it blocks, when analysing a line like this
one with the regex below:
Message-id: 26823262.22036.1411993378646.JavaMail.NS4007563$@127.0.0.1
CFSET regEx =
[A-Za-z0-9_](\.?[A-Za-z0-9_\-]+)*@[A-Za-z0-9_\-\.]+(\.[A-Za-z]{2,6})
The server seems to get stuck in an infinite loop.
Actually, the problem is that the function REfind takes much too long.
I narrowed the problem to the following code which shows that the time taken
grows exponentially with the number of characters and is anyway abnormaly long :
CFSET line=00$@
CFSET regEx = ([A-Z0-9]+)*@
CFLOOP INDEX=n FROM=1 TO=10
CFSET line = 0 line
CFSET deb=getTickCount()
CFSET result = REFindNocase (regEx, line)
CFSET time = (getTickCount()-deb)/1000
CFOUTPUT
line = (#len(line)# char. = #line#
result = #result# in #time# sec.BR/CFOUTPUT
/CFLOOP
And the result is:
line = (17 char. = 000$@ result = 17 in 0.055 sec.
line = (18 char. = $@ result = 18 in 0.028 sec.
line = (19 char. = 0$@ result = 19 in 0.063 sec.
line = (20 char. = 00$@ result = 20 in 0.113 sec.
line = (21 char. = 000$@ result = 21 in 0.224 sec.
line = (22 char. = $@ result = 22 in 0.447 sec.
line = (23 char. = 0$@ result = 23 in 0.902 sec.
line = (24 char. = 00$@ result = 24 in 1.787 sec.
line = (25 char. = 000$@ result = 25 in 3.574 sec.
line = (26 char. = $@ result = 26 in 7.192 sec.
~|
Order the Adobe Coldfusion Anthology now!
http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion
Archive:
http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359388
Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm
Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Getting memory amount used
Might be able to get this using Java. Thanks, I'll dig into this. I thought that my server chokes because of lack of memory, but I finally found that it was because of an infinite time taken in a regExp analysis. I just dropped a post about this. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359389 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Why this regex takes so long?
however try plugging it in here: It gives me the same result: Timout for PHP and Python (after about 3 sec) and a result in Javascript in about 4 sec, because it happens in my computer and there is no time out. It looks like the problem is really in the regEx itself. I'll try to get another one. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359391 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CFML restart ACF 10 app server service
None of them need regular restarts anymore. If you do need restart, it could be because you have a problem in your code. I have a task scheduled every 2 hours, it scans mail rebounces with regular expressions and who knows why, after one year with no problem, I recently got a certain string that completely blocked the server. I had to restart the server at least once every day. I changed a little bit the reg exp, and now it works like a charm. Now, could a regular expression taking so long be considered as a problem with ColdFusion? ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359402 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Getting memory amount used
Hi, Would any one know some trick to get the amount of memory occupied by a structure like query, etc.? Thanks ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359383 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
How can I force clients to refresh JavaScript files?
I wonder why browsers caching Javascript and CSS files at least do not check if the date of the file on the server is still the same as the one in their cache. Since I implemented a Javascript errors log, I catch many errors showing that the old file in the cache was used days after the error was corrected, even with Google Bot! (yeah, Google Bot reads and executes scripts). This page : http://stackoverflow.com/questions/32414/how-can-i-force-clients-to-refresh-javascript-files expose the problem and gives many solutions. I wonder if one could develop an even better solution using ColdFusion? Any ideas? ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359293 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: How can I force clients to refresh JavaScript files?
Try CF Static (http://cfstatic.riaforge.org/), it appends a unique string to the end of the file requests, Ok, good technique. But instead of downloading 262 files, I developped this simple CF_script custom tag: CFSETTING ENABLECFOUTPUTONLY=Yes CFSET scriptFile = expandPath(attributes.src) CFIF fileExists(scriptFile) !--- get a timestamp from the file --- CFSET fileInfo = getFileInfo(scriptFile) CFSET timeStamp = dateFormat (fileInfo.lastModified, yymmdd) timeFormat(fileInfo.lastModified, HHmmss) CFELSE CFOUTPUTFile #attributes.src# not found/CFOUTPUTCFABORT /CFIF CFOUTPUTSCRIPT type=text/javascript src=#attributes.src#?#timestamp#/SCRIPT /CFOUTPUT CFSETTING ENABLECFOUTPUTONLY=no Then replace all like script src=/commun/CSI_menu.js type=text/javascript/script by CF_script src=/commun/CSI_menu.js It does the job. I will probably develop the same for css files ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359296 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: How can I force clients to refresh JavaScript files?
The easiest way is to simply expire the page using cfheader. The problem with this technique is that you will force a reload even if the file was not changed. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359297 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CF10 creating extra CFID/CFTOKEN cookies at the domain level
I notice that your site is reachable both through www.whitevalegolfclub.com and whitevalegolfclub.com. I had the same problem with one of my sites. It looks like two different cookies are created, one for www.whitevalegolfclub.com and the otheone for whitevalegolfclub.com and this this goofs CF. When looking for session cookies, CF does not recognizes one of its sessions and creates a new one every time. I got rid of the access to the site without www and it solved the problem. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359287 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: OT, but stil...
close up shop and move to a cabin in Montana That's the best suggestion I got on that matter ;-) ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359232 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: OT, but stil...
There's nothing magically sacrosanct in HTTP or HTML to prevent this sort of thing. You're right, but as a developper, I have to modify my code every day, because every day comes up a new version in which something has been cancelled or disabled, like accessing the clipboard by Javascript, or such function because it was too dangerous, and here I discover that any one can have a script run in my page just like if I wrote it myself :-( I can understand that a plugin can run a script when a page is loaded, but it is absolutely stupid this script can be part of the page and have all privileges granted to the user after a legitimate authentication. The script could run by itself, but have no access to the DOM and not be able to read or define cookies from the original domain. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359233 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: OT, but stil...
If you do find a way to detect all scripts running on a page I would be very interested in seeing how it works. At least you could then inform the user that there are unwanted processes running in the browser. I'm working on that, may be not for all visitors, but at least for administrators on my customers sites, because the consequences of an attack is greater. So far I'm considering two approaches: 1. find all SCRIPT tags using document.getElementsByTagName(script), but I'm not sure all scripts are defined by a script tag. 2. mark all my own script tags by some special attribute, like SCRIPT TRUESCRIPT ... and detect tags not having this attribute... ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359239 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: OT, but stil...
against your will as it were. Indeed, so I'm considering adding some tests in my bad bot detector based on some strings seen in javascript errors. May be also there is a way to get the list of all scripts in a page, I'll dig into that. I think your idea is excellent though - a way to trap client side errors and tease them out and correct them. Nicely done. Thanks, I've already correct a couples of bugs. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359226 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: OT, but stil...
so it becomes a part of the client side page request against your will as it were. Yes, but this rises a question: If my window.onerror can get events from some plugin code, this means that this code is embeded and is treated as if it belonged to my window. Thus, it has access to everything in my window, including the document, forms, input fields in the forms, even those containing passwords, etc. What kind of breach is that? ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359227 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: OT, but stil...
They don't call it Malware for nothing Ok, but if a malware does mal to a moron client side, in a pinch, this is not our problem, but if it can get pass words so easily, it can also do mal to any server any time. I just got one tonite that allows itself to define cookies under MY domain! If it can store cookies, it can also read cookies, including session cookies! With the session Id, it does not even need the password. I'd like to detect all pieces of javascript code defined in a document and check if they are mine. I was thinking of document.getElementsByTagName, but I'm not even sure all parasit code will actually have a SCRIPT tag. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359229 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
OT, but stil...
This is not really CF related, but since this list is mainly read by Web developers, I thought it could be interesting anyway. First, let me say that my system logs CF executions error in a database with many details that help a lot to clean my code. However it does not trap Javascript errors on client side, and with so many types of browsers, in many versions and each one with parameters that the user can de-activate without even knowing what the parameter is intended to, the developper can never be sure his code will run correctly in any circumstance. Now, thanks to window.onerror, I just developped a Javascript error tracker able to ajax some information to my server, including the url where the error occured, the line number, stack, etc. and there it is: I even get errors in code which is not mine! It seems that some code which is not in my server runs somewhere in the client browser and cause errors I can trap! Some examples Stack : TypeError: Argument or incorrect procedure at _watcherReady (Unknown script code:5:13) User agent : Mozilla/5.0 (Windows NT 6.3; WOW64; Trident/7.0; ASU2JS; rv:11.0) like Gecko ... there is no string like watcherReady anywhere in my code. Template : https://in2.perfectnavigator.com/injectScripts/index.php?id=Pj8sNyM Message : Script error. User agent : Mozilla/5.0 (Windows NT 6.2; WOW64; rv:31.0) Gecko/20100101 Firefox/31.0 How come this code at in2.perfectnavigator.com (which is not on my server) can be executed from one of my pages, or at least the error event reported to one of my pages ? How about this one from Madagascar? Template : http://www.youradexchange.com/script/java.php?option=rotateur Message : Script error. User agent : Mozilla/5.0 (Windows NT 6.0; rv:31.0) Gecko/20100101 Firefox/31.0 IP = 197.149.47.173 pays = Madagascar Template : http://www.myDomain.com/ line : 418 Message : 'JSON' is undefined User agent : Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; chromeframe/32.0.1700.107; GTB7.5; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.3) This one is in my code, but there is no Javascript at line 418 and JSON is never used anywhere. Ah! This one is in my code, very handy to know where to look at when there is a problem on a Mac and you don't have a Mac. Template : http://www.myDomain.org/commun/customTags/textEditor/popupresize.js ligne : 72 Message : TypeError: 'undefined' is not a function (evaluating 'Number(frameObject.width)') User agent : Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_4) AppleWebKit/537.78.2 (KHTML, like Gecko) Version/7.0.6 Safari/537.78.2 ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359223 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Emails MIA
Multi-recipient email will not generate a bounce or undeliverable message in CF if the CF spooler can deliver to at least one recipient. I think the failto address is not used by CF to bounce messages, only to provide a Return-Path: address in the message header, and the bounce is generated by the destinee server, not CF. I use this in my mailing system to detect all bad addresses. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359111 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Handling 404 errors by Coldfusion
Hi, I'm havin someting weird hapening on mt CF 9 / Windows Web Server 2008 / IIS 7.5 My site is returning an error 404 status when some requested page does'nt exists. For instance http://myDomain.com/index.cfm?p=pageid=21 return normaly page 21 which exists, but http://myDomain.com/index.cfm?p=pageid=999 returns an error 404 since there is no page 999 in the database. This is achieved by the following code: CFIF GetPage.recordCount EQ 0 CFINCLUDE TEMPLATE=/commun/notFound.cfmCFABORT and notFound.cfm contains this: cfheader statuscode=404 statustext=Page not found h3Page not found/h3 BRCFOUTPUTSorry, the requested page does not exists on this site A HREF=http://#cgi.server_name#;#cgi.server_name#/A./CFOUTPUT Now the PROBLEM is that the generated code is displayed AFTER the text generated by the IIS server in case of any 404 error. If I remove the line with statuscode=404, the page is displayed normally. It seems that when CF is returning a 404 response, IIS fells compelled to put it's oar too ;-) The problem does not happen on my development setup, with the same version of CF and IIS. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359038 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Handling 404 errors by Coldfusion
IIS Manager [Site] Error Pages 404 - Uncheck Insert content from static file in to the error response and/or reconfigure as fits your need. Ok, I've seen that, but the problem is that I still have to give a URL to be executed or Respond with 302 redirect. In fact I just need IIS to do nothing, everything I need is done in my page, I just need to return the 404 status to the browser ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359040 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Sort by file extension in CFDIRECTORY
I finally solved the problem this way: 1. if the page nb. does not exists: cfheader statuscode=404 statustext=Page not found CFABORT 2. in IIS I defined a URL to be called in case of error 404, this page displays a friendly message, then it also has to declare cfheader statuscode=404 statustext=Page not found (fortunately, IIS won't call the URL a second time, and loop) ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359044 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Sort by file extension in CFDIRECTORY
I think you replied to the wrong thread there Ooops... sorry ;-) ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359046 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Invalid Data for Parameter but which one?
More than likely, you are trying to send a true/false value to a char(1) field. ... or even more likely to a boolean field. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359029 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Invalid Data for Parameter but which one?
CF only transmit what the database driver reports. Many drivers will report an error, but not which field caused the error, which is quite frustrating. Sometimes, one can have more details by copying the SQL statement and execute it in the database itself. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359030 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Query columns shifting
Got at bit of a weird thing going on in my code... Pretty hard to tell without seing that code... If you transfer the query result into a list and if there is one empty column, you might shift all the values after the empty valu indeed. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359031 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Having trouble with cfcI have removed all references to site_theartoflovingcatsanddogs_com and deleted the template cache. No luck. Any help?
maybe he's a bot? If he is, sure he didn't programed it himself. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358957 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Regex help maybe
I need one to test true for: I doubt you can do this with only one test, but using 3 tests is easy: 10 to 20 Characters in length 3 numeric characters in any order 1 special character from basic list ~!@#$%^*()_+ This should do it: CFSET stringOK = (len(form.text) GTE 20 AND len(form.text) LTE 30 AND arrayLen(ReMatch (\d, form.text)) EQ 3 AND arrayLen(ReMatch ([~!@##$%^*()_+], form.text)) EQ 1) Adjust the logical operator depending what ou need is at least or exactly. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358944 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Locks on Access files in CF 9
there are potentially many connections, like in any database system. so the fact that it's only one user is irrelevant - It is, because the principal argument of Access detractor is that it is not good in a multiuser environment. you still have concurrency issues. like with any database system. Access is a very economical and efficient solution for small or medium applications. In large applications the problem is not with Access, the problem is with the designer who chose the wrong solution. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358819 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Locks on Access files in CF 9
But transfer the data to an actual database I was expecting this clever answer! ;-) Access has a bad reputation in a LAN multiuser APPLICATION. But it is only when the application is also an Access application. All requests cause many accesses to the disk, both for code and for data, which causes a bottleneck. In a coldFusion application, the application is NOT stored in the same file as the database, and there is only ONE user: Coldfusion is the user. I've noticed that since I have my database installed on Windows 7, locks are even more capricious than before if you open the database in the same time you run a CF application, and this does not come from Access. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358804 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CF 11
CF 10 introduces a updater in the CFAdmin, and an auto update function God ! ... And it works? ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358766 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Dynamic Query Name in Custom Tag?
I'm attempting to create a dynamic query name inside a Custom Tag. If you create anything in the scope variables, from inside a custom tag, it will be created in the custom tag scope only. You must use the caller scope, ie: cfquery name=caller.ConvertedFields_#attributes.QueryName# dbtype=query ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358694 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Dynamic Query Name in Custom Tag?
Sorry, I was too fast reading your message. If you cfdump var=ConvertedFields_#attributes.QueryName#, I suppose the CFDUMP is still inside the custom tag, so the query should be defined. But if it says Variable CONVERTEDFIELDS_ is undefined it looks like attributes.QueryName is empty. Are you sure you are in the same custom tag ? ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358695 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Run or spawn a desktop program
but how to do this on the users desktop? If it was possible, any one could reformat you disk from a web page, can you imagine? ;-) I doubt Internet would be so much popular ;-) ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358538 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Run or spawn a desktop program
but I suppose we could offer to build it for them into the CF app we are possibly installing. That's your best option, provided all the data is on the server, not on client side. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358543 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: More CFBuilder 3 frustration
Does anyone actually use CF Builder for multiple projects? Nothing beats good old CF Studio ! ;-) ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358495 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: ColdFusion 10 does not allow Access datasource
Here is what solved it for me: I'm glad you could work it out. The more we go and the more we are having issues harder and harder to solve :-( ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358470 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: ColdFusion 10 does not allow Access datasource
This also means you will have hosting problems, as Windows is 64bit only since Server 2008, so you wont be able to setup a CF DSN unless the host is willing to also do this workaround for you or unless they are still running Windows 2003. Actually, I do have Access databases on my Window Web server 2008 R2 using the 32bit ODBC and CF9. So may be the problem is specific to CF10? ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358441 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: ColdFusion 10 does not allow Access datasource
then you must have set them up manually using the workaround. Yes, I think so, it was a long time ago. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358443 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Spam management for forms handling
One alternative would be to create a random number, say between 0 and 9, then add 20 to it and store the result in a session variable. Personnaly, I consider such methods that require the visitor to do something quite unfriendly, especially for blind people, even insulting. It is much easier and transparent to use Javascript to add some value in some hidden field. I've never seen any spamer horsing around with Javascript. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358389 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Spam management for forms handling
Thought this was interesting in the context of the thread. I'm pretty sure Google has the resources to develop such algorithms, would it be juste for the fun of it, but spammers in general have neither the ressources neither the time and probably no interest at all to develop character recognition algorithms, even on plain printed characters. For me, those completely scrambled characters as just ridiculous paranoïa. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358379 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Spam management for forms handling
+1 for the honeypot. + another one. You can also use an onclick on the submit button to fill a hidden field with some key text also hidden in your javascript. If the field is not set properly, dont process. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358356 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Spam management for forms handling
Image captchas are undetectable by screen reading packages Exact, and anyway, do spamers really care about character recognition? Do these characters really have to look su ugly? These captchas really look ridiculous. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358357 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: MSIE 11 HTTP_USER_AGENT
Problem is that signature can be faked. Of course, I don't use it to maintain security on my sites, but to insure that pages are displayed correctly. If a visitor using Firefox fakes his signature to look like MSIE, it's his problem. Now if MSIE looks pretends to be Mozilla, it's a problem for all visitors (Ok, say 80%). My pages load different CSS files for Mozilla or Explorer, and now IE 11 is displaying my pages using Mozilla styles. There are many places the pages are not correct, this poofs that IE 11 is NOT 100% compatible with Mozilla. Stupid attitude from Microstuff... ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358246 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
MSIE 11 HTTP_USER_AGENT
Hi, I discoverd today that MSIE 11 is putting Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko Until now, i thouht HTTP_USER_AGENT could be used in cfml to identify the browser, but apparently this does not work any more. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358240 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: MSIE 11 HTTP_USER_AGENT
According to this page: http://msdn.microsoft.com/en-us/library/ie/hh869301(v=vs.85).aspx The like Gecko token has been added (for consistency with other browsers). C'mon, how can they talk about consistency with other browsers about a string which is intended to be a signature for all browser? These changes help prevent IE11 from being (incorrectly) identified as an earlier version. Very brilliant indeed, now it will be even more incorrectly identified as Mozilla... ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358241 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: The long tail of ColdFusion fail
Application servers are inherently complex, and it takes a certain level of expertise to set them up. There's no getting around that. You're right. However, there are two approches that can be taken in installation procedures. One year ago I had to move from a W2003 to a W2008 server and to a new version of IIS. I discovered that in Windows and IIS every thing was locked and blocked and nothing was working out of the box. I had to learn every thing since IIS 7 is completely different. So I had to unlock, give permissions etc. until I could have a site operational. On the other hand, the CF server was operational right away, but then I had to secure it. So you're right when you say that it takes a certain level of expertise, but this level can be used in two different directions. The first is secure by default, the second more like usecure by default The first may be more frustrating, but the second is kind of more dangereous. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358188 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: The long tail of ColdFusion fail
1. out of the box install, not secure, but your site works just fine.. This is the Adobe's approach 2. out of the box, locked down and secure, but site may break, so you have And this is Microsoft's You're quite right. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358190 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: The long tail of ColdFusion fail
Imagine a family buys a car, and by default the airbags and anti-lock breaks are not enabled. Indeed, they are in the trunk, under the spare tire, but it's up to you to go to the manufacturer's site and download instructions to install them ;-) ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358191 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: The long tail of ColdFusion fail
but for CF to have a backdoor entry point as standard in the install is plainly stupid and it has not helped sell CF as an option. This is exactly the point. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358192 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: The long tail of ColdFusion fail
It's Microsoft's approach ... now. But it took them a long time to get there. You're probably right. The point here is that it is taking even a longer time to Adobe. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358199 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: The long tail of ColdFusion fail
Development servers don't need a secure setup if they're not exposed to untrusted networks. Obviously we are was not talking about development servers in this thread ;-) ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358142 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: The long tail of ColdFusion fail
And why is it such a pain in the rear to keep CF up to date/patched? What I mean is that Adobe recommands that CFIDE should be moved to a safer place, but, after several versions, CFIDE is still installed the same way. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358108 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: The long tail of ColdFusion fail
It's up to you to understand how web servers and web applications work, and set it up My point is that I'm pretty sure everything I've done by hand to move CFIDE/administrator and declare a virtual directory to some special web site could be done by the installer. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358119 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: The long tail of ColdFusion fail
It's daft to facilitate the [potentially dangerous thing] And I don't know if everyone knows why is was insecure to have the Administrator in a conventional place. I got my server hacked like many of us, and I checked in the logs how the guy had access to the administrator. I discovered that there used to be in the administrator an undocumented function allowing to enter in it BYPASSING the password protection. Apparently the hacker has discovered this function. Very clever indeed from the developpers! ;-) Note: I know it is not a good idea to reveal hacking techniques, but this one is about 4 years old and if there still exist servers unprotected against it, they must have been haked a long time ago. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358125 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: The long tail of ColdFusion fail
ignore a public facing server, you are asking for trouble We all have public facing applications, including banks, CIA, FBI, etc, simply protected by a password, but we usually do not have undocumented backdoors ;-) If the CF administrator dindn't have this undocumented function allowing to bypass the password, it would have been secure enough the way it was in CFIDE and there would have been no need for the installer to install it anywhere else. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358126 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: The long tail of ColdFusion fail
I like this analogy... You buy a new Ford Fusion. Ford tells you about how closing the doors and locking it is a security feature. Then, you go park in a high crime area with the car running, keys in the ignition and the doors wide open. Except that in your analogy, it is obvious that one need to open the doors from time to time in order to be able to use the car. With CF, there is never a good reason to leave the server unlocked. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358138 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Patch/update 9.0 help
9.0.2 is not and update it is a separate version without verity which is no longer supported. Exact, and since I've never been able to get Solr to work under 9.0.1, no chance I ugrade to 9.0.2 ! ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358066 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: The long tail of ColdFusion fail
so some people think it is not real code ... and these people are real morons ;-) Being tag oriented, compatible with HTML, makes CF the most developper friendly language ever. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358016 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: The long tail of ColdFusion fail
You don't find the CC installer to be a heck of a lot simpler? Excuse my ignorance, but what is CC? ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358018 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CFML tags was: The long tail of ColdFusion fail
Give it's unlike any other language one might already know, Come on, can you imagine a CF developper who wouldn't know at least HTML? how is it being tag-oriented a dev-friendly thing? Just because the code and the HTML it is intended to produced are integrated within the same syntax. That makes any template looks like ONE program written in ONE language, not a program written in one language and another program in another language embeded in strings in the first language. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358019 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CFML tags was: The long tail of ColdFusion fail
But the bulk of your *code* should be separate from your views. Well, if you really like masochistic constraints like MVC just to make things more accademic, you can, but you will still use CF to code the views and the data, and working with the same language in the SGML family simply makes it easier. You can even make your CF code compatible with XHTML if you like religions, although XHTML has been officially abandoned. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358028 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CFML tags was: The long tail of ColdFusion fail
I completely agree with you, on all points. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358033 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CFML tags was: The long tail of ColdFusion fail
If the Railo Company would do some marketing If they would above all produce some documentation! I wanted to give it a try a couple of years ago, but the documentation was just an arrid desert, so I gave up. Is it any better now ? ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358035 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Allow Extra Attributes in AttributeCollection
Hi, In the administrator, there is a check bor that makes possible to Specify whether ColdFusion tags can pass non-standard attributes in the attributecollection structure. But apparently it does not make posssible to pass non-standard attributes in an ordinary tag in the code. For instance, I would like to use something like this: CFPARAM NAME=attributes.MyAttribute TYPE=string REQUIRED=no So that my parser for documentation is able to recognized default values and required or not required attributes in custom tags. I don't see any parameter for this. Do you think it is possible? ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358036 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Allow Extra Attributes in AttributeCollection
No. Too bad :-( ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358038 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CFML tags was: The long tail of ColdFusion fail
The docs about functions and tags are the same as the CF docs I could work using the CF docs, but if there is the slightest difference, plus or minus, I need to be easily aware of it. It is so important in my mind that I finaly prefered to buy the CF 9 server. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358040 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Allow Extra Attributes in AttributeCollection
However, this will work: CFPARAM NAME=attributes.MyAttribute TYPE=string --- REQUIRED=no --- Ugly, but it works. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358041 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CFML tags was: The long tail of ColdFusion fail
Better than nothing, but still not very developer friendly. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358043 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Allow Extra Attributes in AttributeCollection
like cfcomponent and cffunction (cfargument too I think). cfmodule as well. Yes, but not cfparam unfortunately. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358046 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CFML tags was: The long tail of ColdFusion fail
I'd *much* rather have CF complain than silently ignore a bad argument. I must admit I agree with you ;-) ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358047 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CFML tags was: The long tail of ColdFusion fail
Www.railodocs.org Much better than the last time I tried indeed. Thanks. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:358050 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: The long tail of ColdFusion fail
I think this hack is known since a long time ago. I remember having installed my CF administrator in a safe place at least 2 or 3 years ago. The adobe document which describes what to do is dated Mai 2010, almost 4 years old. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357972 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: The long tail of ColdFusion fail
and then when their site gets owned, CF gets the blame. On another hand, why Adobe hasn't change the way CF is installed if its not safe? ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357978 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: The long tail of ColdFusion fail
I love developing in CF as I can build complex apps in 1/2 the time as it takes in PHP. And I will add the PHP is the uglyest language I've ever seen in about a 40 years career! ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357979 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Does an iframe return anything
You cam run the same checls on an oframe as You can om ypur ma8n dic Sich as document.loaded etc Oh boy ! Did you spilled your coffee on your keyboard this morning ? ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357896 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Does an iframe return anything
lol, I was on my phone, ... and they call that an « intelligent telephone » ? ;-) ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357898 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Honest question about cfform
Why are people so vehemently opposed so to CFForm? Mainly for historical reason. I don't know how is CFForm nowadays, but when it first appeared in CF, it was really week, missing a lot of essential features, and every message coming out of it was only in English, making it not an option for any application in any other language. Also, data validation was only server side, users prefer client side data validation. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357839 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CF9 vs CF10 scheduled tasks
considering all the (well documented) problems it caused previously. Yes, I remember now. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357734 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CF9 vs CF10 scheduled tasks
Is it possible to run scheduled tasks in CF10 Standard Edition? It sure is. However, there is now a restriction on the extension for the log file. It can only be .txt or .log, for so called secirity reason (?). ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357732 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Problem with Solr and CF 9
Hi, I have CF 9.0.1 installed, and I'm not able to define a Solr collection. I get this error in the Administrator: An error occurred while creating the collection: org.apache.solr.common.SolrException. Check the Solr logs for more detail. And in the Solr log, I get this: JNDI not configured for solr Yes, the Solr service is running. Any hint? Thanks. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357477 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Problem with Solr and CF 9
might be a problem with the port being used, do you have anything else
running, other CF versions, other instances or anything like that ?
Nope. Nothing like that.
I noticed in solrConfig.xml something like
maxMergeDocs2147483647/maxMergeDocs
I thought It could be a too big number to read for a 32 bit installation.
I changed it for 32000 but it makes no difference.
I also found this:
abortOnConfigurationError${solr.abortOnConfigurationError:true}/abortOnConfigurationError
put it to false and now it boes until:
GRAVE: java.lang.RuntimeException: Can not find a valid core for the cores
admin handler
~|
Order the Adobe Coldfusion Anthology now!
http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion
Archive:
http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357479
Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm
Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Hosting... Again
I've got a lot of large CF sites I have to move because my host is not up to what we've grown to be. Have you considered having your own dedicated server ? I certainly do not have as large CF sites as you have, but except if you run all these site for free, a dedicated server is worth the cost. You can manage it using Remote Desktop Connexion and do whatever you want on your server. I Have such one server with Solid State Drive and it runs like a bomb, for only about 1600$ a year. You can install CF with NO restrictiction and use all its capacity. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357407 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Hosting... Again
there is no way to isolate sites from each other on a shared hosting setup. For instance, from time to time I've encountered a situation when I have to stop and restart the CF service, ie: dead lock, local file kept open after an error, etc. You can'nt do this on a shared server. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357413 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: custom error handler
works fine for missing variables however is there a way to identify context validation errors such as missing /cfif etc. missig variables are execution time errors, but missing /CFIF are syntax errors. CFERROR can trap execution errors, but not syntax errors since they happen during compilation and execution is never started. Anyway, I'm pretty sure somebody here will tell you that syntax errors should never happen on a production server, all your templates should be tested on your development plateform first. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357347 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: CMS Vs Framework
Why would I choose a CF Framework over a CF CMS system? I'm affraid you are comparing apples and oranges. You would use a CF framework to develop a CMS system but you wouldn't have to develop anything if you use a CMS system. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357298 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
