Securing ColdFusion (tips)

January 23, 2008

I’ve started to write a document for OWASP about ColdFusion security which I hope will be included on the site when I finish it.

Any feedback is more than welcome, if you’d like to see anything included about ColdFusion Security, let me know and I’ll do my best to include it.

Some of the items covered are:

  1. SQL Injection
  2. Database Logins
  3. Logging
  4. XSS (Cross Site Scripting)
  5. Cookie Hijacking
  6. Proper Error Handling
  7. Input Validation
  8. Securing Protected Areas
  9. Forms being submitted outside of your domain
  10. Automated data mining

The document about ColdFusion security can be downloaded here. Please note that the document is still a work in progress.

This document is sponsored by www.clickfind.com.au

ColdFusion Security

Entry Filed under: ColdFusion. Tags: , .

Leave a Comment

Required

Required, hidden

Some HTML allowed:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <pre> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Trackback this post  |  Subscribe to the comments via RSS Feed

Email Subscription

Enter your email address to subscribe to this blog and receive notifications of new posts by email.

Categories

Archives

Recent comments

Blogroll

Top Rated

Top Clicks

Category Cloud

Advertising Brisbane SEO clickfind Business Directory ColdFusion Environmental initiatives Google Google Adwords Google Analytics In the media JavaScript JavaScript Form Validation Marketing MS SQL Other Programming Search Engine Optimization & Marketing Yahoo

Tags

alexa alexa ranking analytics anchor text links australia Australian Search Engines bartercard base bbx business directories business directory business directory review cfc clickfind ColdFusion confidence forum gadget Google hash html internet traffic keywords list local search markup MS SQL online marketing pagerank PR Programming RSS search engine search engines security SEO spellcheck spelling stored procedure tool trust tutorial validation website design www.mergermarket.com

Blog Stats

Top Posts

Authors

RSS Start Listing