ColdFusion 10 Lockdown Guide
Just a quick note to let folks know that the ColdFusion 10 Lockdown Guide (a step by step walkthrough and how you can secure your ColdFusion 10 install) has been released. You may find it here: PDF
Just a quick note to let folks know that the ColdFusion 10 Lockdown Guide (a step by step walkthrough and how you can secure your ColdFusion 10 install) has been released. You may find it here: PDF
Please refrain from posting large blocks of code as a comment. Use Pastebin or Gists instead.
1) It says to create the cfadmin directory, but then it doesn't say anything about copying anything to it. Are you supposed to copy what's under the Coldfusion cfusion\wwwroot to your new cfadmin folder? If you do, will the updates then fail since it does not know where the actual CFIDE is or do you have to copy it over again after each update.
2) Moving the CFIDE appears to break the updates, the accordions are gone and when I click on "Download" nothing happens though the rest of the administrator appears to work.
Any help appreciated.
But the other issue is that now the updater does not know where CFIDE is, does it? You set where the scripts directory is, but not the CFIDE. Do you have to copy it over after every update?