cfurlencrypt-develop Mailing List for Cold Fusion URL Encryption
Status: Beta
Brought to you by:
cyberswat
Menu
▾
▴
cfurlencrypt-develop — Developer-centric list
You can subscribe to this list here.
| 2001 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
(41) |
Sep
(12) |
Oct
(2) |
Nov
|
Dec
|
|---|
|
From: <cfu...@li...> - 2001-10-12 21:16:18
|
Hey people. General announcement just in case you haven't noticed. Steve Nelson and I wrote a version of cfurlencrypt that now replaces the functionality of formurl2attributes in much the same way formurl2attributes_search does. There has been some discussion of announcing it at the fusebox conference, but so far we have been trying to keep it quite ... however it's in the top 4 cf projects for activity so apparently someones looking at it. It works a little differently than previous versions to accommodate as wide an audience as possible so you might want to take a look at it. It does totally support encrypted cfid and cftokens. It relies on a server based file to store the key so that application hoping is not possible. Enjoy, Kevin Bridges |
|
From: <cfu...@li...> - 2001-10-05 11:31:55
|
Hi, The company I work for, Schoollink, is still looking for coders. The ideal candidate will have several years writing Cold Fusion (Fusebox preferred) applications, as well as SQL (Stored Procedures, Views, Triggers), JavaScript, Java, and of course HTML experience. The person we are looking for will have excellent leadership abilities, and full knowledge of the development process. Unix experience would be helpful but not required. Any other higher level language (C, C++, C#, VB) knowledge would be a bonus. Schoollink is an ASP and infrastructure provider located in Fayetteville, North Carolina. We primarily work with School Districts and County Governments. This is a full time, on site, permanent position. The salary range for the right person would be between 40 and 50 thousand dollars a year. Please send any and all resumes to: mailto:re...@sc... Tim Heald ACP/CCFD :) Application Development http://www.schoollink.net/ |
|
From: <cfu...@li...> - 2001-09-17 14:35:57
|
Joe, To beign with you should be using the secret CF functions cfusion_encrypt and cfusion_decrypt with your method. This will eliminate the need for a seperate call to urlencodedformat() because the secret functions guarantee a completely alphanumeric string that is url friendly. Try to alter the encrypted url string generated by your method. Place characters at the beginning, in the middle, or at the end. Notice the way this affects your data or possibly even throughs a cf error that stops the page from displaying at all. Then try the same test on the cfURLencrypt version. You'll notice that cfURLencrypt will catch any attempts by an end user to alter the string and therefore ensures data integrity while providing a mechanism for you to record items like ip address of the person attempting to alter the url. (You can do that by editing the error.cfm page). Your email got me to think a little more about enhancing the security. So I modified the code a bit. There is now a session.key that is used in the encryption/decryption algorithms. This is a 128 bit UUID that is randomly generated with each session. This will eliminate users from being able to email a URL to another user and allowing the second user to access the page. This will also eliminate the site from being able to be reliably indexed by search engines. If you need the site to be indexed you can enter in a plain text hardcoded value for session.key (this is in Application.cfm) I have posted the new version to the site, but have attached it here as well so that you can have access to it until the files post at http://sourceforge.net/project/showfiles.php?group_id=34234 "Watson, Joe <FHWA>" <Joe...@fh...> said: > On the outset, the way I just mentioned that I'm encrypting and > URLEncodingFormat, how is your way better? I just emailed you how I'm doing > it now. How much more secure and why is it more secure? > > > If any questions email me at: Joe...@fh... > or call me at: 614-280-6829 > > > > > > > |
|
From: <cfu...@li...> - 2001-09-15 01:18:44
|
Please try out the following and let me know if you can hack it ... I don't think you will be able to :) If nobody can break it or has objections I am going to post this on sourceforge and make the announcement to the community that we have a new version. cfURLencrypt: An Open Source Project Initial Developers: Kevin Bridges (cyb...@or...) Version: 2.0 Revision Date: 09/14/2001 Website: http://sourceforge.net/projects/cfurlencrypt/ License: GNU Public License This version as far as I can tell is totally url hack proof. Any alteration of the URL results in a redirection to an error page. You can also specify which scope you would like to have the variables converted to by adjusting the attributes in the decryption calls located in the index.cfm file This version has both a tag and udfs so that it will work on either CF 4.5 or CF 5. You must set the following variables located in Application.cfm: <CFSET request.key = "ThisIsATest"> <CFSET request.root = "/cfurlencrypt/"> <CFSET request.HTTProot = "http://127.0.0.1/cfurlencrypt/"> Both the tag and the function take the following attributes: value = the value to be encrypted or decrypted key = the value to use as an encryption/decryption key method = "encrypt" or "decrypt" scope = "URL", "ATTRIBUTES", "FORM", "CLIENT" or a custom scope of your design. Let me know if you can break/hack it or if you have any questions! Kevin Bridges cyb...@or... / kbr...@co... |
|
From: <cfu...@li...> - 2001-09-14 15:17:11
|
Tim Heald ACP/CCFD :) Application Development http://www.schoollink.net/ -----Original Message----- From: L. Gavin Guttersen [mailto:ga...@sc...] Sent: Friday, September 14, 2001 11:13 AM To: Staff Subject: FW: We stand united. Friday Night at 7:00 p.m. step out your door, stop your car, or step out of your establishment and light a candle. We will show the world that Americans are strong and united together against terrorism. Please pass this to everyone on your e-mail list. We need to reach everyone across the United States quickly. The message: WE STAND UNITED - WE WILL NOT TOLERATE TERRORISM. We need press to cover this -- we need the world to see |
|
From: <cfu...@li...> - 2001-09-14 13:50:26
|
Sounds good to me, umm I am not sure how my time is going to look for well for the foreseeable future. I just got out of the Army in Feb. and I am still in the reserves so... I'll send what I can find and do what I can. Unfortunately my dev box took a dive, and it had CF5 on it. I am installing iPlanet and CF5 on my workstation right now. Talk to you soon. Tim Heald ACP/CCFD :) Application Development http://www.schoollink.net/ -----Original Message----- From: cfu...@li... [mailto:cfu...@li...] Sent: Friday, September 14, 2001 9:41 AM To: 'cfu...@li...' Subject: RE: [Cfurlencrypt-develop] Open Source Awesome ... The purpose of the sample application is simply to give all of the developers a consistent base to work off of ... I know it is a little bit of trouble, but if you could get your functions to work inside of the application I think it would totally rock and I would appreciate it greatly ... then I could post a new version to the sourceforge site and advertise what we are doing a bit more. ::: -----Original Message----- ::: From: cfu...@li... ::: [mailto:cfu...@li...] ::: Sent: Friday, September 14, 2001 7:44 AM ::: To: cfu...@li... ::: Subject: RE: [Cfurlencrypt-develop] Open Source ::: ::: ::: I have a version that does that. Let me find it and I'll ::: send it out. I am ::: not sure why but the last UDF I made worked ok for me, but ::: in the sample ::: application was having problems. ::: ::: Tim Heald ::: ACP/CCFD :) ::: Application Development ::: http://www.schoollink.net/ ::: ::: -----Original Message----- ::: From: cfu...@li... ::: [mailto:cfu...@li...] ::: Sent: Friday, September 14, 2001 9:31 AM ::: To: cfu...@li... ::: Subject: RE: [Cfurlencrypt-develop] Open Source ::: ::: ::: What happens when additional info is appended? ::: ::: What happened to the strategy of appending a pipe? ::: ::: best, paul ::: ::: At 01:25 PM 9/14/01 +0000, you wrote: ::: >I have been using both the tag version and a udf version ::: without any ::: problems ::: >or reports of problems ... as long as additional info is ::: not appended to ::: the ::: >encrypted string. ::: ::: ::: _______________________________________________ ::: ::: Project Page: http://cfurlencrypt.sourceforge.net/ ::: Project Summary: http://sourceforge.net/projects/cfurlencrypt/ ::: Cfurlencrypt-develop mailing list ::: Cfu...@li... ::: https://lists.sourceforge.net/lists/listinfo/cfurlencrypt-develop ::: ::: ::: _______________________________________________ ::: ::: Project Page: http://cfurlencrypt.sourceforge.net/ ::: Project Summary: http://sourceforge.net/projects/cfurlencrypt/ ::: Cfurlencrypt-develop mailing list ::: Cfu...@li... ::: https://lists.sourceforge.net/lists/listinfo/cfurlencrypt-develop ::: _______________________________________________ Project Page: http://cfurlencrypt.sourceforge.net/ Project Summary: http://sourceforge.net/projects/cfurlencrypt/ Cfurlencrypt-develop mailing list Cfu...@li... https://lists.sourceforge.net/lists/listinfo/cfurlencrypt-develop |
|
From: <cfu...@li...> - 2001-09-14 13:44:18
|
Awesome ... The purpose of the sample application is simply to give all of the developers a consistent base to work off of ... I know it is a little bit of trouble, but if you could get your functions to work inside of the application I think it would totally rock and I would appreciate it greatly ... then I could post a new version to the sourceforge site and advertise what we are doing a bit more. ::: -----Original Message----- ::: From: cfu...@li... ::: [mailto:cfu...@li...] ::: Sent: Friday, September 14, 2001 7:44 AM ::: To: cfu...@li... ::: Subject: RE: [Cfurlencrypt-develop] Open Source ::: ::: ::: I have a version that does that. Let me find it and I'll ::: send it out. I am ::: not sure why but the last UDF I made worked ok for me, but ::: in the sample ::: application was having problems. ::: ::: Tim Heald ::: ACP/CCFD :) ::: Application Development ::: http://www.schoollink.net/ ::: ::: -----Original Message----- ::: From: cfu...@li... ::: [mailto:cfu...@li...] ::: Sent: Friday, September 14, 2001 9:31 AM ::: To: cfu...@li... ::: Subject: RE: [Cfurlencrypt-develop] Open Source ::: ::: ::: What happens when additional info is appended? ::: ::: What happened to the strategy of appending a pipe? ::: ::: best, paul ::: ::: At 01:25 PM 9/14/01 +0000, you wrote: ::: >I have been using both the tag version and a udf version ::: without any ::: problems ::: >or reports of problems ... as long as additional info is ::: not appended to ::: the ::: >encrypted string. ::: ::: ::: _______________________________________________ ::: ::: Project Page: http://cfurlencrypt.sourceforge.net/ ::: Project Summary: http://sourceforge.net/projects/cfurlencrypt/ ::: Cfurlencrypt-develop mailing list ::: Cfu...@li... ::: https://lists.sourceforge.net/lists/listinfo/cfurlencrypt-develop ::: ::: ::: _______________________________________________ ::: ::: Project Page: http://cfurlencrypt.sourceforge.net/ ::: Project Summary: http://sourceforge.net/projects/cfurlencrypt/ ::: Cfurlencrypt-develop mailing list ::: Cfu...@li... ::: https://lists.sourceforge.net/lists/listinfo/cfurlencrypt-develop ::: |
|
From: <cfu...@li...> - 2001-09-14 13:41:08
|
I have a version that does that. Let me find it and I'll send it out. I am not sure why but the last UDF I made worked ok for me, but in the sample application was having problems. Tim Heald ACP/CCFD :) Application Development http://www.schoollink.net/ -----Original Message----- From: cfu...@li... [mailto:cfu...@li...] Sent: Friday, September 14, 2001 9:31 AM To: cfu...@li... Subject: RE: [Cfurlencrypt-develop] Open Source What happens when additional info is appended? What happened to the strategy of appending a pipe? best, paul At 01:25 PM 9/14/01 +0000, you wrote: >I have been using both the tag version and a udf version without any problems >or reports of problems ... as long as additional info is not appended to the >encrypted string. _______________________________________________ Project Page: http://cfurlencrypt.sourceforge.net/ Project Summary: http://sourceforge.net/projects/cfurlencrypt/ Cfurlencrypt-develop mailing list Cfu...@li... https://lists.sourceforge.net/lists/listinfo/cfurlencrypt-develop |
|
From: <cfu...@li...> - 2001-09-14 13:40:06
|
When additional information is appended it breaks the decryption algorithm and generates a cold fusion error instead of displaying the page. The pipe strategy sounds viable. Also had the suggestions of computing the length of the encrypted string and reserving the first couple of characters for the length of the encrypted string so we know exactly what to pass into the decryption method. I simply haven't had the time to code either of these yet and would appreciate anyone taking a stab at it. ::: -----Original Message----- ::: From: cfu...@li... ::: [mailto:cfu...@li...] ::: Sent: Friday, September 14, 2001 7:31 AM ::: To: cfu...@li... ::: Subject: RE: [Cfurlencrypt-develop] Open Source ::: ::: ::: What happens when additional info is appended? ::: ::: What happened to the strategy of appending a pipe? ::: ::: best, paul ::: ::: At 01:25 PM 9/14/01 +0000, you wrote: ::: >I have been using both the tag version and a udf version ::: without any problems ::: >or reports of problems ... as long as additional info is ::: not appended to the ::: >encrypted string. ::: ::: ::: _______________________________________________ ::: ::: Project Page: http://cfurlencrypt.sourceforge.net/ ::: Project Summary: http://sourceforge.net/projects/cfurlencrypt/ ::: Cfurlencrypt-develop mailing list ::: Cfu...@li... ::: https://lists.sourceforge.net/lists/listinfo/cfurlencrypt-develop ::: |
|
From: <cfu...@li...> - 2001-09-14 13:31:53
|
What happens when additional info is appended? What happened to the strategy of appending a pipe? best, paul At 01:25 PM 9/14/01 +0000, you wrote: >I have been using both the tag version and a udf version without any problems >or reports of problems ... as long as additional info is not appended to the >encrypted string. |
|
From: <cfu...@li...> - 2001-09-14 13:25:46
|
I have been using both the tag version and a udf version without any problems or reports of problems ... as long as additional info is not appended to the encrypted string. Attached is the latest versions of both. > So what's the consensus? Is the tag version OK? > > best, paul > > |
|
From: <cfu...@li...> - 2001-09-14 04:00:13
|
So what's the consensus? Is the tag version OK? best, paul At 02:28 PM 8/30/01 -0600, you wrote: >o.k. I just set this up and it immediately broke .... most likely because I >did not implemet Tims udfs properly (sorry). > >If it breaks for you you can add this line: ><cfset variables.method="tag"> >on line 23 of index.cfm > >::: -----Original Message----- >::: From: Kevin Bridges [mailto:KBr...@co...] >::: Sent: Thursday, August 30, 2001 2:25 PM >::: To: 'cfu...@li...' >::: Subject: [Cfurlencrypt-develop] Open Source >::: >::: >::: Apparently this is an interesting subject for much of the >::: cold fusion >::: community both fusebox based and not. If we manage this >::: project properly we >::: could theoretically come up with a process of encryption >::: that could easily >::: be adopted by the CF community. The emails generated from >::: this list so far >::: illustrate that there is much to consider. >::: >::: IMHO if we are going to effectively meet the needs of the >::: CF development >::: community we need to first have a stable unified way of >::: encrypting and >::: decrypting url variables. To me our first step would be >::: the development of >::: "standard product" that the rest of the community can >::: download and use on >::: both cf5 servers and and cf4.5 servers. Toward that end I >::: would like to >::: make a proposal and would like to receive your feedback. >::: >::: Attached to this email is a zip file that contains a very >::: simple setup for >::: testing the server side encryption/decryption of url >::: variables utilizing >::: both tags and functions. The first few lines in the >::: index.cfm file explain >::: how to switch the application from the udf version to the >::: tag version. The >::: application illustrates how to pass variables via href, >::: secure ids in forms, >::: and set client variables (CFID/CFTOKEN in URL). Each of >::: these examples are >::: ultra-simple and need to further be refined ... IE they >::: aren't done yet! >::: >::: Tim, if you agree with this direction, please take a look >::: at the UDF version >::: and see if you can fully integrate it into this layout (I >::: couldn't quite get >::: it). >::: >::: I think that if we can agree on something as a base product >::: to work from >::: then progress can be made. I look forward to your input. >::: >::: Kevin Bridges >::: >::: P.S. ... if the attachment on this email doesn't come >::: through (new mailing >::: list) then you can download the file at >::: http://www.orlandoartistry.com/cfurlencrypt.zip >::: >::: > >_______________________________________________ > >Project Page: http://cfurlencrypt.sourceforge.net/ >Project Summary: http://sourceforge.net/projects/cfurlencrypt/ >Cfurlencrypt-develop mailing list >Cfu...@li... >http://lists.sourceforge.net/lists/listinfo/cfurlencrypt-develop |
|
From: <cfu...@li...> - 2001-09-04 18:07:18
|
Sorry not to have mentioned this info earlier, but here it is. We are located in Fayetteville NC. This position would be an on site position. Also we are not a small privately owned SCHOOL. We are a small privately owned Application Service Provider. We work mainly for schools and County governments. Tim Heald ACP/CCFD :) Application Development http://www.schoollink.net/ -----Original Message----- From: Timothy Heald [mailto:th...@sc...] Sent: Tuesday, September 04, 2001 11:58 AM To: Fusebox-Community@Houseoffusion. Com; Fusebox@Topica. Com; Cf-Xml@Torchboxlists. Com; Cfurlencrypt-Develop@Lists. Sourceforge. Net; Carolina ColdFusion User Group Subject: OT: Seeking Programmers Hey, My company is looking for programmers and a DBA. We are looking for a SQL Server 7 / 2000 DBA and ColdFusion developers, preferably with some Fusebox experience, however we are willing to train the right programmer. Minimum requirements would be HTML, and the basics of JavaScript. The ideal candidate for a programming position would have some or all of the following: HTML, javaScript, CSS, SQL, ColdFusion, Java and some XML would be helpful. We are a small privately owned school working primarily in the education sector. If interested please email your resume to: re...@sc... Tim Heald ACP/CCFD :) Application Development http://www.schoollink.net/ |
|
From: <cfu...@li...> - 2001-09-04 15:56:05
|
Hey, My company is looking for programmers and a DBA. We are looking for a SQL Server 7 / 2000 DBA and ColdFusion developers, preferably with some Fusebox experience, however we are willing to train the right programmer. Minimum requirements would be HTML, and the basics of JavaScript. The ideal candidate for a programming position would have some or all of the following: HTML, javaScript, CSS, SQL, ColdFusion, Java and some XML would be helpful. We are a small privately owned school working primarily in the education sector. If interested please email your resume to: re...@sc... Tim Heald ACP/CCFD :) Application Development http://www.schoollink.net/ |
|
From: <cfu...@li...> - 2001-08-31 22:34:51
|
Hey everyone ... the list has been offline since sometime last night ... seems like it is starting to work again ... way sorry for the inconvenience |
|
From: <cfu...@li...> - 2001-08-31 22:34:08
|
-----Original Message----- From: Kevin Bridges Sent: Thursday, August 30, 2001 7:47 PM To: 'cfu...@li...' Subject: RE: [Cfurlencrypt-develop] Re: [Cfurlencrypt-develop] Stacy, I'm a little pressed for time right now or would right more, but definitely take a look at the archives from today: http://www.geocrawler.com/lists/3/SourceForge/15163/0/ <http://www.geocrawler.com/lists/3/SourceForge/15163/0/> There has been an ongoing thread about client side encryption as well. Kevin -----Original Message----- From: Stacy Young [mailto:Sta...@sf...] Sent: Thursday, August 30, 2001 7:45 PM To: 'cfu...@li...' Subject: RE: [Cfurlencrypt-develop] Re: [Cfurlencrypt-develop] Are you guys doing anything on the client side as well ? -----Original Message----- From: Tim Heald [mailto:th...@sc...] Sent: Thursday, August 30, 2001 9:21 PM To: cfu...@li... Subject: [Cfurlencrypt-develop] Re: [Cfurlencrypt-develop] When I am using the client method, I have found that it is adding %7C to the end of the value. Does anyone know why it would do that?? ----- Original Message ----- From: Stacy Young <mailto:Sta...@sf...> To: 'cfu...@li...' <mailto:'cfu...@li...'> Sent: Thursday, August 30, 2001 9:07 PM Subject: [Cfurlencrypt-develop] Ola ! Hi guys, Question. In a nutshell whats the goal here? Just want to get on the same page before I start spewing out ideas etc.. -Stace (Mr.) |
|
From: <cfu...@li...> - 2001-08-31 22:17:37
|
-----Original Message----- From: Kevin Bridges Sent: Thursday, August 30, 2001 7:47 PM To: 'cfu...@li...' Subject: RE: [Cfurlencrypt-develop] Re: [Cfurlencrypt-develop] Stacy, I'm a little pressed for time right now or would right more, but definitely take a look at the archives from today: http://www.geocrawler.com/lists/3/SourceForge/15163/0/ <http://www.geocrawler.com/lists/3/SourceForge/15163/0/> There has been an ongoing thread about client side encryption as well. Kevin -----Original Message----- From: Stacy Young [mailto:Sta...@sf...] Sent: Thursday, August 30, 2001 7:45 PM To: 'cfu...@li...' Subject: RE: [Cfurlencrypt-develop] Re: [Cfurlencrypt-develop] Are you guys doing anything on the client side as well ? -----Original Message----- From: Tim Heald [mailto:th...@sc...] Sent: Thursday, August 30, 2001 9:21 PM To: cfu...@li... Subject: [Cfurlencrypt-develop] Re: [Cfurlencrypt-develop] When I am using the client method, I have found that it is adding %7C to the end of the value. Does anyone know why it would do that?? ----- Original Message ----- From: Stacy Young <mailto:Sta...@sf...> To: 'cfu...@li...' <mailto:'cfu...@li...'> Sent: Thursday, August 30, 2001 9:07 PM Subject: [Cfurlencrypt-develop] Ola ! Hi guys, Question. In a nutshell whats the goal here? Just want to get on the same page before I start spewing out ideas etc.. -Stace (Mr.) |
|
From: <cfu...@li...> - 2001-08-31 22:17:35
|
-----Original Message----- From: Kevin Bridges Sent: Thursday, August 30, 2001 7:47 PM To: 'cfu...@li...' Subject: RE: [Cfurlencrypt-develop] Re: [Cfurlencrypt-develop] Stacy, I'm a little pressed for time right now or would right more, but definitely take a look at the archives from today: http://www.geocrawler.com/lists/3/SourceForge/15163/0/ <http://www.geocrawler.com/lists/3/SourceForge/15163/0/> There has been an ongoing thread about client side encryption as well. Kevin -----Original Message----- From: Stacy Young [mailto:Sta...@sf...] Sent: Thursday, August 30, 2001 7:45 PM To: 'cfu...@li...' Subject: RE: [Cfurlencrypt-develop] Re: [Cfurlencrypt-develop] Are you guys doing anything on the client side as well ? -----Original Message----- From: Tim Heald [mailto:th...@sc...] Sent: Thursday, August 30, 2001 9:21 PM To: cfu...@li... Subject: [Cfurlencrypt-develop] Re: [Cfurlencrypt-develop] When I am using the client method, I have found that it is adding %7C to the end of the value. Does anyone know why it would do that?? ----- Original Message ----- From: Stacy Young <mailto:Sta...@sf...> To: 'cfu...@li...' <mailto:'cfu...@li...'> Sent: Thursday, August 30, 2001 9:07 PM Subject: [Cfurlencrypt-develop] Ola ! Hi guys, Question. In a nutshell whats the goal here? Just want to get on the same page before I start spewing out ideas etc.. -Stace (Mr.) |
|
From: <cfu...@li...> - 2001-08-31 22:17:34
|
test |
|
From: <cfu...@li...> - 2001-08-31 22:17:32
|
Stacy, I'm a little pressed for time right now or would right more, but definitely take a look at the archives from today: http://www.geocrawler.com/lists/3/SourceForge/15163/0/ <http://www.geocrawler.com/lists/3/SourceForge/15163/0/> There has been an ongoing thread about client side encryption as well. Kevin -----Original Message----- From: Stacy Young [mailto:Sta...@sf...] Sent: Thursday, August 30, 2001 7:45 PM To: 'cfu...@li...' Subject: RE: [Cfurlencrypt-develop] Re: [Cfurlencrypt-develop] Are you guys doing anything on the client side as well ? -----Original Message----- From: Tim Heald [mailto:th...@sc...] Sent: Thursday, August 30, 2001 9:21 PM To: cfu...@li... Subject: [Cfurlencrypt-develop] Re: [Cfurlencrypt-develop] When I am using the client method, I have found that it is adding %7C to the end of the value. Does anyone know why it would do that?? ----- Original Message ----- From: Stacy Young <mailto:Sta...@sf...> To: 'cfu...@li...' <mailto:'cfu...@li...'> Sent: Thursday, August 30, 2001 9:07 PM Subject: [Cfurlencrypt-develop] Ola ! Hi guys, Question. In a nutshell whats the goal here? Just want to get on the same page before I start spewing out ideas etc.. -Stace (Mr.) |
|
From: <cfu...@li...> - 2001-08-31 19:09:41
|
Ok, I am sorry but I am sending this to everyone I can think of. Does anyone know if there is a list of all of the command line commands to shut off the RDS server across ALL platforms (Linux, HPUnix, NT, Solaris). Can you start/stop services from the command line on NT? I am using Solaris 8, and have figured out that one. If you know how to do it on any of the platforms I would appreciate your dropping me a note. Thanks, Tim Heald ACP/CCFD :) Application Development http://www.schoollink.net/ |
|
From: <cfu...@li...> - 2001-08-31 14:11:40
|
Well I was going to comment on as to whether or not you need it. Aside from using SSL where are the security holes left open? (taking into consideration the URL params are concealed as per your process) Is our main concern to prevent session hijacking ? Is there anything else we have to worry about ? -----Original Message----- From: Tim Heald [mailto:th...@sc...] Sent: Thursday, August 30, 2001 10:11 PM To: cfu...@li... Subject: Re: [Cfurlencrypt-develop] Re: [Cfurlencrypt-develop] Alan had some ideas about that I think he was going to pursue. I unfortunately don't know enough about javaScript or Java to really understand it. ----- Original Message ----- From: Stacy <mailto:Sta...@sf...> Young To: 'cfu...@li...' <mailto:'cfu...@li...'> Sent: Thursday, August 30, 2001 9:44 PM Subject: RE: [Cfurlencrypt-develop] Re: [Cfurlencrypt-develop] Are you guys doing anything on the client side as well ? -----Original Message----- From: Tim Heald [mailto:th...@sc...] Sent: Thursday, August 30, 2001 9:21 PM To: cfu...@li... <mailto:cfu...@li...> Subject: [Cfurlencrypt-develop] Re: [Cfurlencrypt-develop] When I am using the client method, I have found that it is adding %7C to the end of the value. Does anyone know why it would do that?? ----- Original Message ----- From: Stacy Young <mailto:Sta...@sf...> To: 'cfu...@li...' <mailto:'cfu...@li...'> Sent: Thursday, August 30, 2001 9:07 PM Subject: [Cfurlencrypt-develop] Ola ! Hi guys, Question. In a nutshell whats the goal here? Just want to get on the same page before I start spewing out ideas etc.. -Stace (Mr.) |
|
From: Tim H. <th...@sc...> - 2001-08-31 02:16:54
|
Ola !Alan had some ideas about that I think he was going to pursue. I =
unfortunately don't know enough about javaScript or Java to really =
understand it.
----- Original Message -----=20
From: Stacy Young=20
To: 'cfu...@li...'=20
Sent: Thursday, August 30, 2001 9:44 PM
Subject: RE: [Cfurlencrypt-develop] Re: [Cfurlencrypt-develop]
Are you guys doing anything on the client side as well ?
=20
=20
-----Original Message-----
From: Tim Heald [mailto:th...@sc...]=20
Sent: Thursday, August 30, 2001 9:21 PM
To: cfu...@li...
Subject: [Cfurlencrypt-develop] Re: [Cfurlencrypt-develop]
=20
When I am using the client method, I have found that it is adding %7C =
to the end of the value. Does anyone know why it would do that??
----- Original Message -----=20
From: Stacy Young=20
To: 'cfu...@li...'=20
Sent: Thursday, August 30, 2001 9:07 PM
Subject: [Cfurlencrypt-develop] Ola !
=20
Hi guys,=20
Question. In a nutshell whats the goal here? Just want to get on the =
same page before I start spewing out ideas etc..=20
-Stace (Mr.)=20
|
|
From: Stacy Y. <Sta...@sf...> - 2001-08-31 01:44:20
|
Are you guys doing anything on the client side as well ? -----Original Message----- From: Tim Heald [mailto:th...@sc...] Sent: Thursday, August 30, 2001 9:21 PM To: cfu...@li... Subject: [Cfurlencrypt-develop] Re: [Cfurlencrypt-develop] When I am using the client method, I have found that it is adding %7C to the end of the value. Does anyone know why it would do that?? ----- Original Message ----- From: Stacy <mailto:Sta...@sf...> Young To: 'cfu...@li...' <mailto:'cfu...@li...'> Sent: Thursday, August 30, 2001 9:07 PM Subject: [Cfurlencrypt-develop] Ola ! Hi guys, Question. In a nutshell whats the goal here? Just want to get on the same page before I start spewing out ideas etc.. -Stace (Mr.) |
|
From: Tim H. <th...@sc...> - 2001-08-31 01:26:33
|
Ola !When I am using the client method, I have found that it is adding = %7C to the end of the value. Does anyone know why it would do that?? ----- Original Message -----=20 From: Stacy Young=20 To: 'cfu...@li...'=20 Sent: Thursday, August 30, 2001 9:07 PM Subject: [Cfurlencrypt-develop] Ola ! Hi guys,=20 Question. In a nutshell whats the goal here? Just want to get on the = same page before I start spewing out ideas etc..=20 -Stace (Mr.)=20 |
7 messages has been excluded from this view by a project administrator.
