> Is CF sandbox security intended to secure the application runtime
> environment or is it intended to secure directory and folder access
> during development when developers upload and access files? Or is it
> intended for both?
Thanks Russ and Dave. I suspected it was as both of y
> Is CF sandbox security intended to secure the application runtime environment
> or is it intended to secure directory
> and folder access during development when developers upload and access files?
> Or is it intended for both?
Sandbox security and developer-specific CF Admi
sandbox.
Regards
Russ Michaels
www.michaels.me.uk
www.cfmldeveloper.com - Free CFML hosting for developers
www.cfsearch.com - CF search engine
On Apr 2, 2013 6:10 PM, "Earl, George" wrote:
>
> Is CF sandbox security intended to secure the application runtime
> environment o
Is CF sandbox security intended to secure the application runtime environment
or is it intended to secure directory and folder access during development when
developers upload and access files? Or is it intended for both?
For example, are sandboxes the way to go if we want to restrict a
On Thu, Nov 26, 2009 at 6:04 PM, Dave Hatz wrote:
> I am trying to get familiar with Sandbox security on CF8 Enterprise running
> on Windows 2008 box. I enabled sandbox security and restarted the server,
> now I can't access the administrator page and my CF service fails : The
I am trying to get familiar with Sandbox security on CF8 Enterprise running on
Windows 2008 box. I enabled sandbox security and restarted the server, now I
can't access the administrator page and my CF service fails : The service is
unavailable.
Can someone point me in the right dire
No one else is getting this? :o
This is scaring me!
~|
Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to
date
Get the Free Trial
http://ad.doubleclick.net/clk;192386516;25150098;k
Archive:
http://
I noticed the CF Server list wasn't really linked on the site anymore, so I'm
posting this here.
I ran the 8.01 patch to our CF 8 install (a fresh install and a hotfix 3
install) and we are suddenly getting odd sandbox security issues. First, CF is
being denied access to the
You would need to add those paths yourself, which is what the cfadmin does.
-Original Message-
From: D F [mailto:[EMAIL PROTECTED]
Sent: 01 December 2006 15:25
To: CF-Talk
Subject: Sandbox Security Contexts Activeated Via the Factory
I am enabling Sandbox Security from the factory
I am enabling Sandbox Security from the factory, trying to get CF to setup the
default contexts.
C:\CFusionMX7\wwwroot\WEB-INF\
C:\Inetpub\wwwroot\CFIDE\
The problem I am having is that it seems that if I physically go into the CF
admin and enable Sandbox Security it sets up the above
This is the exact problem I am having. I want to be able to set
Application Specific CustomTagPathes. Is there a work around to this
problem?
http://mach-ii.info/blog/2004/10/get-out-vote.cfm
--
Thanks,
Troy
~|
Discover CFTick
-
> russ
>
> -Original Message-
> From: Troy Simpson [mailto:[EMAIL PROTECTED]
> Sent: 23 October 2005 14:49
> To: CF-Talk
> Subject: Re: Sandbox Security, CFC, and cftag Path. Oh My!!
>
> > -Is it possible to restrict an application to use only certain path
s own version of a tag and not the one in the custom tags folder.
--
russ
-Original Message-
From: Troy Simpson [mailto:[EMAIL PROTECTED]
Sent: 23 October 2005 14:49
To: CF-Talk
Subject: Re: Sandbox Security, CFC, and cftag Path. Oh My!!
> -Is it possible to restrict an application to
> -Is it possible to restrict an application to use only certain paths stored
> in the Custom Tag Path with or without SandBox Security?
> Yes, by specifying which paths are allowed within the sanbox. This is the
> purpose of a sanbbox, to specify which paths/files/tags etc an appli
-Maybe this is a better question.
-Is it possible to restrict an application to use only certain paths stored
in the Custom Tag Path with or without SandBox Security?
Yes, by specifying which paths are allowed within the sanbox. This is the
purpose of a sanbbox, to specify which paths/files/tags
Maybe this is a better question.
Is it possible to restrict an application to use only certain paths
stored in the Custom Tag Path with or without SandBox Security?
Is it possible to restrict an application to use only certain
ColdFusion Mappings with or without SandBox Security?
--
Thanks
-Application code located under application BBB is not allow to read files
located in application AAA.
-Any ideas how to prevent this from happening?
Create a sandbox for each app giving each application access to the others
files, or put the shared files in a generic location and use a mapping
in
e applications are protected from each other with
> SandBox Security.
>
> Problem:
> When I make a request for the index.cfm page of my application (AAA) I
> get the following stack of errors.
~|
Logware (www.logware.us
Background:
I am developing a ColdFusion Application using CFMX 7 and the Mach-II
Framework. There are multiple applications in the JRun/ColdFusion
instance and the applications are protected from each other with
SandBox Security.
Problem:
When I make a request for the index.cfm page of my
Dave Watts said:
> You must have missed this the first time, Matt.
But your prediction regarding who is interested was quite correct :-)
Jochem
[Todays Threads]
[This Message]
[Subscription]
[Fast Unsubscribe]
[User Settings]
You must have missed this the first time, Matt.
Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
phone: 202-797-5496
fax: 202-797-5444
-Original Message-
From: Dave Watts [mailto:[EMAIL PROTECTED]
Sent: Wednesday, 28 January, 2004 14:56
To: CF-Talk
Subject: sandbox security
This will probably interested Jochem and Matt Liotta:
http://www.macromedia.com/devnet/security/security_zone/mpsb04-01.html
It's a fix to prevent developers from using Java reflection to bypass
sandbox security restrictions on CreateObject and CFOBJECT.
Dave Watts, CTO, Fig Leaf Software
Friends, I'm not sure but I think I've found a bug in the CFMX Enterprise.
The problem happens when you use CFFTP tag in a sandboxed account. As you
may know CFFTP uses PORT by default (the "passive" attribute is "no" by
default). So far so good except for the fact that CFMX is not dealing the
conn
2003 22:40
To: CF-Talk
Subject: Re: sandbox security
Snake Hollywood wrote:
>
> Security
> Password Security
> Use a ColdFusion Administration Password Yes
> Use an RDS PasswordYes
> Enable ColdFusion Security Yes
Snake Hollywood wrote:
>
> Security
> Password Security
> Use a ColdFusion Administration Password Yes
> Use an RDS PasswordYes
> Enable ColdFusion Security Yes
>
> Security Sandboxes
> e:\wwwroot\europeancircuit.com\
>
\europeancircuit.com\-
Read,Write,Execute,Delete
Sever/Port Permissions
All servers/ports connect,resolve
-Original Message-
From: Jochem van Dieten [mailto:[EMAIL PROTECTED]
Sent: 04 October 2003 21:51
To: CF-Talk
Subject: Re: sandbox security
Snake Hollywood
Snake Hollywood wrote:
>
> I have deleted ALL my sandboxes and started again with no luck.
>
> here are my security settings anyway
I can't really make heads or tails of that garbled stuff. Maybe
you can reformat it to make sense in plain text.
Jochem
[Todays Threads]
[This Message]
[
All servers/ports connect,resolve
-Original Message-
From: Jochem van Dieten [mailto:[EMAIL PROTECTED]
Sent: 04 October 2003 20:50
To: CF-Talk
Subject: Re: sandbox security
Snake Hollywood wrote:
> since upgrading to cfmx6.1 sanbox security seems to have broke. Any
> attem
Snake Hollywood wrote:
> since upgrading to cfmx6.1 sanbox security seems to have broke. Any
> attempt to perform a file upload with sandboxing enabled produces an
> error accessing the tmp file. Other file operations work fine, CF just
> can't seem to copy the tmp file to the destination.
> Addin
since upgrading to cfmx6.1 sanbox security seems to have broke. Any
attempt to perform a file upload with sandboxing enabled produces an
error accessing the tmp file. Other file operations work fine, CF just
can't seem to copy the tmp file to the destination.
Adding this folder to the sandbox with
me war, but it is a known issue.
> Neil
>
> - Original Message -
> From: "Jochem van Dieten" <[EMAIL PROTECTED]>
> To: "CF-Talk" <[EMAIL PROTECTED]>
> Sent: Friday, January 17, 2003 7:10 AM
> Subject: Re: CFMX, Sandbox Security and ToString()
.
>
> I don't want to start a flame war, but it is a known issue.
That was not my intention either, but in the past we have seen many
problems being blamed on Sandbox Security by hosts and never has anybody
provided a setup that could be reproduced. I have grown very wary of
claims
ame war, but it is a known issue.
Neil
- Original Message -
From: "Jochem van Dieten" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Friday, January 17, 2003 7:10 AM
Subject: Re: CFMX, Sandbox Security and ToString()
> Robert Bailey wrote:
&g
Robert Bailey wrote:
> And how about the ToString() function working on MX servers that have
> "sand box security". They are telling me that I will not be able to use
> this function because they are using this.
I don't know what they smoke, but in my sandboxes ToString() works.
Jochem
~
And how about the ToString() function working on MX servers that have
"sand box security". They are telling me that I will not be able to use
this function because they are using this. Not sure I am interested in a
host that I can not use CFFORM or ToString(). The host I have been
having problems w
- Original Message -
From: "Jochem van Dieten" <[EMAIL PROTECTED]>
> So far I have not encountered cases in which CF MX behaved bad with
> respect to sandboxes. I would be interested if you could persuade them
> to tell which issues they have exactly.
This is
happy surprise. Previous versions always felt like sandbox security was
something that was added on later and was not integrated into all
aspects of the product. With MX, it looks like security has been a
consideration from the very start. I would even describe administering
sandboxes as intuit
A hosting company we're considering setting up with has just got CFMX
running, but they're only allowing accounts with CFFILE etc. ennabled on
their CF 5 box. They say there are still security issues with CFMX
sandboxing, so no CFFILE there.
This isn't critical because (1) we've not yet "MX'ed" a
Chris Giminez wrote:
> So far I have been unable to completely understand how to implement Sandbox
>Security.
>
> I need to set this up for a server that will be used in a hosting environment.
>
> I have read the Forta books and the product documentation.
>
> If a
So far I have been unable to completely understand how to implement Sandbox Security.
I need to set this up for a server that will be used in a hosting environment.
I have read the Forta books and the product documentation.
If anyone knows of a step by step tutorial I may not be aware of
Bastian Schmid wrote:
>
> i'm trying to set up a SandBox Security on our server, but it does not
> work.
>
> After I set the rules and created the policies, I start the SandBox.
> But now, absolutely no webpage can be found on the server!
What sort of sandbox, OS or
Hi @all,
i'm trying to set up a SandBox Security on our server, but it does not work.
After I set the rules and created the policies, I start the SandBox. But now,
absolutely no webpage can be found on the server!
I get the error-information, that there is an SandBox-Error because
Hi, I want to disable the cfregistry tag on a cf-server using sandbox
security.
Only in one directory I want one or two users (maybe a group of users) be
able to use the cfregistry tag (enabling all actions).
I have some problems implementing this. When I access a cfm-file using
cfregistry via
Is there somewhere an article out where it is described how to build a
sandbox security on a server other
than this: http://www.allaire.com/Handlers/index.cfm?ID=7745&Method=Full
and B. Forta's chapters in the advanced CWACK book ?
Thanks for any hi
44 matches
Mail list logo