ditto what howie said...
- Original Message -
From: Howie Hamlin
To: CF-Talk
Sent: Sunday, January 27, 2002 4:03 PM
Subject: Re: Macromedia.com
Hi Jeremy,
I, for one, would like to see a separate developer site (for example,
developer.macromedia.com) where the front p
Tony-
I'm running iMS on my colocated server. It rocks! You CAN do anything you
want with it, because the mailserver is all ColdFusion...and everyone knows
you can do anything with ColdFusion. :P
If you want to poke around on the server to look at the code, let me know.
Kevin Langevin
Web Guy
Yes, iMS can do pretty much anything you want it to do with email. Basically, the
functionality of the server is coded with CFML
templates so, if you can code it in CFML, then iMS can do it. This list is run on
iMS, BTW.
Please let me know if I can help you with specific applications/question
I need a reliable way to pipe email into a database. I've done it with
CFPOP before, but this needs to scale much larger and I also need to catch
outgoing mail through a mail server. Is this somethign that iMS can do?
Tony Schreiber, Senior Partner Man and Machine, Limited
mailt
Looks like the MM DevEx is up and running again.
Peter Tilbrook ([EMAIL PROTECTED])
Macromedia ColdFusion Applications Developer
Cubok Pty. Ltd.
Units 7-10
Australian Heritage Village
Watson ACT 2602
AUSTRALIA
http://www.cubok.com
Mobile: 0401 973 415
Tel: +61-2-6262-4080
__
Hey, I'm not trying to be hard on ya. But this is a big issue. Afte
r all,
even Microsoft now wants to actually care about security :)
- Original Message -
From: "Bill Davidson" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Sunday, January 27, 2002 9:03 PM
Subject: Re: Be
Dave you are right. I am not saying I am cryptology master, I just think I
could do better than the cfencrypt. That was my point - came out diluted
and misread, but I was basically telling this guy to not even think of
splitting the data into to tables and feel safe. Encryption methodologies I
In order to use session variables, CF has to keep track of who is whom.
Therefore, it sets two cookies without you knowing it (assuming you've
enabled session or client variables): CFID and CFTOKEN. Therefore, if
you don't want to use cookies, you have to explicitly disable them in
the CFAPPLICATI
Yeah im sure that my hosting provider will let me right inot the
administrator. :-)
- Original Message -
From: "Peter Tilbrook" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Sunday, January 27, 2002 10:45 PM
Subject: Re: CF and Hit Counter
> Why is that?
>
> All you need
Why is that?
All you need to do is setup a datasource in the ColdFusion Administrator
and
set it as the default storage mechanism for client variables. CF takes ca
re
of the rest.
- Original Message -
From: "Norman Elton" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Monda
Are the updated from 4.0 to 4.5 Pro still available online
Thanks,
Neil
__
Dedicated Windows 2000 Server
PIII 800 / 256 MB RAM / 40 GB HD / 20 GB MO/XFER
Instant Activation · $99/Month · Free Setup
http://www.pennyhost.com
> There's also an IIS ISAPI filter that does this (it's what
> I'm using):
> http://www.pstruh.cz/help/urlrepl/library.htm
>
> What's the *favored* way to do this, using the ISAPI filter
> or the custom tag solution. If one is favored over the other,
> why?
I'd guess that the ISAPI filter wil
> These queries are all running as the same DB user (as
> specified in the DSN) so I guess 5 active requests will
> only use 5 sessions?
That would be my guess as well.
> The next version of our reports will probably be with a
> dedicated report engine like Brio or Cognos, unless we find
>
Indeed. The community drives technology: I've never seen MSDN or
SourceForge down for long, if at all. Of course, when it was Allaire's
"community", they didn't exactly provide a quality experience. I can't
remember the number of times I'd seen their site down due to some
first-year CF error, o
So long as you realize that session variables typically rely on cookies
(you'd have to use the SetClientCookies=no attribute of CFApplication -
I believe that's what it's called). By default, ColdFusion handles this
without you knowing it. There are techniques to use session/client
variables witho
Well it is fine however take into consideration those
users who may visit your site could be on dial-up.
So per-say at 11:00AM you get Visitor A to come to your
site and you set the session.visitor since it was not set and the
IP Address was not present in your table.
Then at 1:00PM you get a di
I don't see anything wrong with doing it that way.
It won't cause any performance loss unless you get overloaded with hits
all at once.
But if your sites traffic generally comes from the same people, that way
would work just fine.
__
steve oliver
cresco technologies, inc.
http
Hi all,
I am in the process of writing a hit counter app in java, but in the
meantime, I have thrown a little something together in CF and wanted to
get some feedback on it.
I have a SQL Server backend to this site and what I do is in the
application.cfm page, I check for the existence of a va
> ok, I found the class it's called
>
> Shell.ThumbnailExtract.HTML.1 {EAB841A0-9550-11CF-8C16-00805F1408F3}
>
> I tried to play with it with cfobject
>
> class="Shell.ThumbnailExtract.HTML.1" action="CREATE"
> context="INPROC">
>
> but I got a . COM error 0x80004002. No such interface
> s
> I'm using ColdFusion client variables and would like to
> have the CFID/CFTOKEN values change periodically during
> a user "session" in order to reduce the chances that, if
> they were intercepted, they could be used to impersonate
> a user. Has anyone figured out a way to do that?
That see
> > Unfortunately, this doesn't prevent anyone from
> > intentionally posting data from wherever they want.
> > It's trivial to build an HTTP POST request and
> > specify whatever Referer header you like. I typically
> > demonstrate this with a netcat or telnet client in
> > the Fig Leaf securit
> I'm using a custom tag, called FreeData_NWS by Jim at
> Depressed Press. It goes to the national Weather Service,
> gets some weather data and gives them as variables. Works
> slick!
>
> I'm trying to display the temperature on every page, and if
> I call this tag on every page, I get a rea
> does anyone has any aditional ideas for me on this problem?
> I´m really having problems making cfgrid run here...
I don't have any additional ideas, but some questions:
1. Did you try using the Microsoft VM, as suggested earlier?
2. Does it work from another machine?
Dave Watts, CTO, Fig Lea
> This is a very important question in my opinion... and I have
> been scrounging the net looking for a solution I can implement.
>
> I would certainly appreciate someone throwing a light switch
> so I can see the solution more clearly. As Dave clearly points
> out... we can NOT use the cgi.ht
Bill Davidson wrote:
> Ok, got your point on encryption algorithms. Public encryptions scare me,
> as at least they offer hints on to how they're done, making TRUE hackers one
> step closer to knowing where to look to find the key, or what the basis of
> the algorithm is.
If you mean public ke
> However, before getting overly complicated, you could at
> least do some level of your own encryption without a lot
> of research that would prevent the lazy hacker from just
> ripping off your credit card numbers. Splitting them in
> two tables is not all that difficult to figure out. If
>
> > The problem with CFENCRYPT isn't that it's a public
> > standard, but rather that it uses a relatively weak
> > encryption strength (that, along with the fact that
> > the key is probably stored somewhere within the
> > application code or environment).
>
> Ditto. As I and, you, and other
developer's exchange is a key part of the community.. if it were to go
way-side due to a bad implementation or frustration, it certainly would
decrease core community... of course, we have this list as well but the
point in part is, support cost and the cost to maintain a community is big,
bu
Haha - very true. So what? We pay so much for the developer's
exchange, we shouldn't be concerned with their implementation issues :0)
-Original Message-
From: Jochem van Dieten [mailto:[EMAIL PROTECTED]]
Sent: Sunday, January 27, 2002 5:35 PM
To: CF-Talk
Subject: Re: Macromedia's dest
hope it is their cold fusion ...
Macromedia has other products for middleware in other places... :)
-paris
-Original Message-
From: Billy Cravens [mailto:[EMAIL PROTECTED]]
Sent: Sunday, January 27, 2002 19:22
To: CF-Talk
Subject: RE: Macromedia.com
Haha - isn't it "their" ColdFusion
Haha - isn't it "their" ColdFusion as well?
-Original Message-
From: Paris Lundis [mailto:[EMAIL PROTECTED]]
Sent: Sunday, January 27, 2002 3:17 PM
To: CF-Talk
Subject: RE: Macromedia.com
Thanks Jeremy.. We all understand providers evaporating :)
Be sure to have Macromedia keep their F
Lets also make that knowledge base current,friendly, & useful.
Thanks for asking for our input.
Tracy
Quoting Jeremy Allaire <[EMAIL PROTECTED]>:
> Hi-
>
> I saw the post about a person having problems downloading something on
> the site.
>
> We have a planned outage this and
Don't store the credit card numbers at all. Just process the transaction
immediately and store the rest of the order information.
- Original Message -
From: "Jeff Fongemie" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Sunday, January 27, 2002 7:17 AM
Subject: Best way to
Bill Davidson wrote:
> They've been doing this long before Allaire was bought by Macromedia. I
> never understood it. A company of that size has got to have a back up
> server that they can stick up while they do their routine maintenance.
I am not sure if switching infrastructures qualifies
Ditto. If we stop whining to the list then poor Matt won't have to constantly hold
our hands and
say it will all be OK. If you have a valid complaint then talk to the MM folks
directly in charge
and let them know exactly what your problem is. If you complain on the list then the
right people
>The problem with CFENCRYPT isn't that it's a public standard, but rather
>that it uses a relatively weak encryption strength (that, along with the
>fact that the key is probably stored somewhere within the application code
>or environment).
Ditto. As I and, you, and others have mentioned... cryp
> that they have had some website and support issues, but they have
> delivered a solid release of both Server and Studio. Which is all you
ahem, i'm a bit miffed with the unicode "support" in studio...
---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.gr
Dittos, what Howie said. Why should we who are sold on the product, have to
wade through the sales pitch?
Dave
- Original Message -
From: "Howie Hamlin" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Sunday, January 27, 2002 5:03 PM
Subject: Re: Macromedia.com
> Hi Jerem
On Sun, 27 Jan 2002 13:59:37 -0500, "Bill Davidson"
<[EMAIL PROTECTED]> wrote:
>Ok, got your point on encryption algorithms. Public encryptions scare me,
>as at least they offer hints on to how they're done, making TRUE hackers one
>step closer to knowing where to look to find the key, or what t
Agreed... I am rather often asked by my superiors, "how hard would it be for
you to #qPendProject.client_request#?" In the past it would take me more
time than they were willing to wait to give them an answer and I would have
to wait until after a conference call or meeting was over to get back t
think that is a great idea Kev...
-p
-Original Message-
From: Kevin Langevin [mailto:[EMAIL PROTECTED]]
Sent: Sunday, January 27, 2002 17:08
To: CF-Talk
Subject: RE: Macromedia.com
Perhaps a group of us should get together and submit a proposal to
Macromedia for the developer site and
Perhaps a group of us should get together and submit a proposal to
Macromedia for the developer site and see if they'd contract it out to us.
That way we get the site we want, they get happy developer support, and they
don't have to commit an entire team to get it built.
Kevin Langevin
Web Guy I
DITTO
-Original Message-
From: Howie Hamlin [mailto:[EMAIL PROTECTED]]
Sent: Sunday, January 27, 2002 3:03 PM
To: CF-Talk
Subject: Re: Macromedia.com
Hi Jeremy,
I, for one, would like to see a separate developer site (for example,
developer.macromedia.com) where the front page is a
no-
Paris penned:
> Be sure to have Macromedia keep their Flash away
> from the Cold Fusion section...
I don't see a whole lot of Flash over there... Seems like the only thing
is the Flash expanding menu, which doesn't strike me as too much of a
hog, although that's just an impression. If I had Fl
Hi Jeremy,
I, for one, would like to see a separate developer site (for example,
developer.macromedia.com) where the front page is a
no-nonsense portal for all of the developer resources. This way, www.macromedia.com
stays as the marketing/sales site and the other
site makes it easy for us dev
>Ok, got your point on encryption algorithms. Public encryptions scare me,
>as at least they offer hints on to how they're done, making TRUE hackers
one
>step closer to knowing where to look to find the key, or what the basis of
>the algorithm is.
Wrong.
You can think about what makes a good en
Jeremy
Can you also give the links to the developers exchange more prominance
on the Macromedia site as that will probably be one of the most commonly
accessed parts of the site.
On the main page the shortcut buttons are not apparant as buttons /links
On another note the search facility loca
At 01:18 PM 1/27/02 -0500, you wrote:
> > Roll your own encryption. I remember awhile back some
> > posted their algorithm for encryption in CF, and it
> > seemed pretty solid. If you use your own encryption
> > scheme, it would be a lot harder for a hacker to decrypt
> > the CC number.
>
>Yikes!
Thanks Jeremy.. We all understand providers evaporating :)
Be sure to have Macromedia keep their Flash away from the Cold Fusion
section... and writing the Cold Fusion support site in something other than
Cold Fusion defeats people's faith on the product.. so make it happen with
the product...
W
I guess I'm a bit too paranoid to even THINK about putting credit card
numbers in one of my databases. Just thinking of the potential liability is
staggering. Can you imagine your clients' attorneys asking you to explain
your own encryption algorithm to a judge? Or why you used a public
algorit
Hi-
I saw the post about a person having problems downloading something on the site.
We have a planned outage this and next weekends in order to switch offsite hosting
providers -- our current provider went out of business.
We're also taking the coming months to re-build the site from scratch
Has anyone out there integrated the Full Verity Server with ColdFusion? We
are looking at purchasing the full Verity K2 server to augment our intranet
search/cataloging capabilities. I am curious to hear about your
nightmares/success stories in the implementation. Or did you scrap CF to
interfa
Actually, after talking to the client some more, I am not going to have to
do this. What I am going to end up doing is taking what they have in ASP and
"converting" it to CF, thus making the entire site a CF application.
- Original Message -
From: "Billy Cravens" <[EMAIL PROTECTED]>
To: "C
Well what really surprises me is the fact that they did not simply test
everything on a production server and get it going and working great and
then migrate it over to their normal servers. Can you imagine the amount
of $$ that is lost by MM taking their e-commerce down for this?
The
If you are using SQL 7 this will work and #cnt# is 1 to 12.
WHERE (DATEPART(m, rundate) = #cnt#)
- Original Message -
From: "Tim" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Sunday, January 27, 2002 12:08 PM
Subject: Query for specified month
> I need to query a databa
They've been doing this long before Allaire was bought by Macromedia. I
never understood it. A company of that size has got to have a back up
server that they can stick up while they do their routine maintenance.
-Bill
brainbox
- Original Message -
From: "Billy Cravens" <[EMAIL PROTECTE
Ok, got your point on encryption algorithms. Public encryptions scare me,
as at least they offer hints on to how they're done, making TRUE hackers one
step closer to knowing where to look to find the key, or what the basis of
the algorithm is. Yeah, there are certainly good ones out there, thus
Even on the same box, CF can't talk to ASP's sessions. Pass the session
vars from ASP to CF - WDDX would be nice, but you can do that conversion
on the CF side if you pass it as a list or whatever. Then in CF, parse
the session var back into a CF session. Passing back to ASP is easier -
just do
On one note, I'd say that we should give Macromedia a break. I know
that they have had some website and support issues, but they have
delivered a solid release of both Server and Studio. Which is all you
can really expect, cuz for most of us, that's all we're really paying
for.
I'm sure if yo
They are invalid... to SQL
WHERE #DatePart("m", rundate)# = #cnt#
Or
WHERE #Month(rundate)# = #cnt#
Not sure if that will work or not, since it's running the operator on
the sql variable.
__
steve oliver
cresco technologies, inc.
http://www.crescotech.com
-Origin
I need to query a database for records based on month.
I have a date field, and I tried the following two
ways:
WHERE DatePart("m", rundate) = #cnt
and I tried
WHERE Month(rundate) = #cnt#
#cnt is a variable that gets incremented. I keep
getting errors that say DatePart and Month are Invalid
> Roll your own encryption. I remember awhile back some
> posted their algorithm for encryption in CF, and it
> seemed pretty solid. If you use your own encryption
> scheme, it would be a lot harder for a hacker to decrypt
> the CC number.
Yikes! I'd strongly recommend against writing your o
put # signs around your finction to cause them to be resolved before the
query runs ... they think they are SQL functions
-Original Message-
From: Tim [mailto:[EMAIL PROTECTED]]
Sent: Sunday, January 27, 2002 1:09 PM
To: CF-Talk
Subject: Query for specified month
I need to query a datab
On 1/27/02, Jeff Fongemie penned:
>Sunday, January 27, 2002, 10:12:15 AM
>Hello CF-Talk,
>
> I've got a simple site, and uses a small Access database. We will be
> taking credit cards.
>
> Wondering what others consider a realistic practice to ensure
> security to a reasonable level. What
I'm sorry - I looked all day yesterday. I found one today on CFMCentral,
but their display code is broken somehow, so half of their links aren't
showing. Figured out how to 'hack' it out...
-Bill
www.brainbox.tv
- Original Message -
From: "Bill Davidson" <[EMAIL PROTECTED]>
To: "CF-Tal
Hey all. I need a custom tag that can convert to roman numerals.
Considering MM's DexEv is down, does anyone have one they wouldn't mind
sending me? If you would be so kind, please send privately to
[EMAIL PROTECTED]
Thanks in advance.
-Bill
www.brainbox.tv
Roll your own encryption. I remember awhile back some posted their
algorithm for encryption in CF, and it seemed pretty solid. If you use your
own encryption scheme, it would be a lot harder for a hacker to decrypt the
CC number. Using a public standard (like cfencrypt) is not a very good
solut
Really it depends on what you are using the credit cards for, if you are
using them for e-commerce transactions, I suggest not storing them at
all. Once the transaction is complete you will have the information from
the bank directly. It does not bother a customer to have to type in
their cred
Sunday, January 27, 2002, 10:12:15 AM
Hello CF-Talk,
I've got a simple site, and uses a small Access database. We will be
taking credit cards.
Wondering what others consider a realistic practice to ensure
security to a reasonable level. What do others do?
The site will have a SLL, but
My point exactly. Thanks.
--- Ben
-Original Message-
From: Andrew Scott [mailto:[EMAIL PROTECTED]]
Sent: Sunday, January 27, 2002 4:04 AM
To: CF-Talk
Subject: RE: UltraDev
Yes and the design tab in my opinion was not that good, it felt like it
was not updated enough and I never used
I stopped short on this subject, as most developers would be aware that
anything off this scale would take time to implement. After don't you
developers have to deal with this in your own work!
Give MM a go, it is a major overhaul that can not go without some
hiccups :-)
-Original Message--
Yes and the design tab in my opinion was not that good, it felt like it
was not updated enough and I never used it as it felt to restricted to
what you could and couldn't design.
But with the Dreamweaver integration since 4.0 I felt this a better
option anyway.
-Original Message-
From:
72 matches
Mail list logo