CF911 Wiki: A knowledge base and repository for CF server troubleshooting

HTML

Security

Security is of course a huge concept, and spans from coding to configuration, and both within and outside of CF. There's no way to propose to cover all the facets, but the following resources explore some of the various topics.

Resources

Following are blog entries or other resources related to this subject.

Other Related Tool Resources

  • ColdFusion Cookbook recipes on security
  • HackMyCF tool (a hosted service for scanning/analyzing your CF server for security problems, free and commercial)
  • Security Tools (CF411 category, including several subcategories)
    • CFML Query-level Injection Protection Tools
    • CFML Application-level Security Tools
    • Web Server-level Security Tools
    • Web Application Firewall-level Security Tools
    • Hardware Firewall-level Security Tools