<%
PrintStartTemplate"", True, False
%>
Cold Fusion Hosting Tip
This month's tip provided by: IX Web Hosting
Bookmark HostIndex.com and return for a NEW Cold Fusion hosting tip every month!
Anyone who is looking for a shared ColdFusion server should really
assess the security of the shared ColdFusion server environment.
Questions to ask a prospective host:
1. Is Advanced Security on?
2. Are security sandboxes enabled?
3. Can others read my files/folders using CFFILE tag?
ColdFusion server is a single Windows NT process that,
in a shared environment, executes all scripts under the
a single Windows NT account. This means that if Windows
NT gives ColdFusion server a permission to read your
scripts and files then Windows NT will not protect you
from someone else's ColdFusion scripts reading your
scripts and files.
The protection must be configured within ColdFusion
server itself. The server comes with advanced security
option that lets ColdFusion administrator to establish
so called "security sandboxes". The name "sandbox"
comes from visualization of children sandbox where
kids play and don't normally get out without adult's
assistance. Technically sandbox is a policy inside
of ColdFusion server that spells this:
ColdFusion scripts located in or under directory
C:\Customer1
can access files and folders only in or under
C:\Customer1
If a script located under C:\Customer1 attempts
to access a file under C:\Customer2, then
terminate the script with an exception.
Fatal error: Call to undefined function print_footer() in /home/hostindx/public_html/cfjan00.shtm on line 57