http://blog.classsoftware.com/index.cfm Web technologies and applications focusing on ColdFusion, Flex and Flash. http://www.classsoftware.com/images/logosm.gif http://blog.classsoftware.com/index.cfm en-us Thu, 09 Sep 2010 23:47:31 +1000 Sun, 13 May 2007 06:42:00 +1000 BlogCFC http://blogs.law.harvard.edu/tech/rss justin@classsoftware.com (Justin Mclean) justin@classsoftware.com (Justin Mclean) http://blog.classsoftware.com/index.cfm/2007/5/13/ColdFusion-Securing-Databases-part-2 In <a href="http://blog.classsoftware.com/index.cfm/2007/5/7/ColdFusion-Securing-Databases">ColdFusion Securing Databases (part 1)</a> we looked at restricting what sql statements can be run with a datasource and partitioning applications to use multiple datasources and multiple users to improve security. In this article we'll look at setting the permissions on the database tables. [More] ColdFusion SQL Injection Database Security Sun, 13 May 2007 06:42:00 +1000 http://blog.classsoftware.com/index.cfm/2007/5/13/ColdFusion-Securing-Databases-part-2 http://blog.classsoftware.com/index.cfm/2007/5/7/ColdFusion-Securing-Databases Most ColdFusion applications I'm come across tend to use a single datasource or if they use more than one the same user credentials are used. As well as causing possible performance and scalability issues this can be a security risk. It's quite easy to restrict what SQL statements a datasource will run with the ColdFusion administrator. [More] ColdFusion SQL Injection Database Security Mon, 07 May 2007 16:25:00 +1000 http://blog.classsoftware.com/index.cfm/2007/5/7/ColdFusion-Securing-Databases