Pete Freitag's Homepage
Recent Blog Entries...
Nginx redirect www to non www domain
1 day ago
I've been playing around with Nginx web server over the past few days, its a great light weight web server, ideal for VPS's or smaller Amazon EC2 instances where resources are not as abundant....
HashDOS and ColdFusion
27 days ago
Earlier this week at the 28C3 security conference in Berlin researchers presented on a denial of service (DOS) technique that several web application platforms (PHP, ASP.NET, Node....
HackMyCF Updated for APSB11-29 Security Hotfix
42 days ago
Adobe released a security hotfix APSB11-29 for ColdFusion 8 and 9 on Tuesday, which fixes two XSS (Cross Site Scripting) vulnerabilities (CVE-2011-2463 and CVE-2011-4368). One vulnerability exists in cfform and the other in RDS....
Adobe eSeminar on FuseGuard
93 days ago
Adobe has asked me to do an online e-seminar: Protecting ColdFusion Applications with FuseGuard thursday November 3rd at 10am PT / 1pm ET.
If you're curious about FuseGuard and how it works please head over to Adobe.com and register now!...
If you're curious about FuseGuard and how it works please head over to Adobe.com and register now!...
Determining Which Cumulative Hotfixes are Installed on ColdFusion
129 days ago
It's not always obvious which Cumulative hotfixes are installed on a ColdFusion server....
Adding Two Factor Authentication to ColdFusion Administrator
129 days ago
A few months back I was researching two/multi factor authentication solutions to employ to meet PCI compliance, I came across a somewhat new company called DuoSecurity....
ColdFusion Developer Week at Adobe.com
137 days ago
This week (September 12-16 2011) is ColdFusion Developer Week over at Adobe....
Bug Loading Scripts for CFFileUpload and CFMediaPlayer
147 days ago
It has recently come to my attention that there are some hard coded references to /CFIDE/scripts/ in some of the JS files that are used by the new (in CF9) tags CFFileUpload and CFMediaPlayer....
Video: Installing FuseGuard
189 days ago
Did you know that it only takes minutes to get FuseGuard up and running? Here's a short video showing how to install and configure FuseGuard - web application firewall for ColdFusion:
What's FuseGuard?...
What's FuseGuard?...
Fixing Apache (13)Permission denied: access to / 403 Forbidden
190 days ago
Every so often I run into a 403 Forbidden response when I'm setting up something in Apache, checking the log files will yield something like:
(13)Permission denied: access to /
There are a few things that could be the problem:...
(13)Permission denied: access to /
There are a few things that could be the problem:...
Client Variable Cookie CFGLOBALS Includes Session Ids
197 days ago
I was recently conducting a CFML security review for a client and realized that when you have client variables set to use Cookies, the session ID's (eg CFIDE and CFTOKEN) are included in the CFGLOBALS cookie....
Maximum Security CFML - cfObjective Slides
255 days ago
What a great conference cf....
Search
Popular Tags
adobe
ajax
amazon
apache
api
apple
atom
blog
blogging
cf
cfeclipse
cfimage
cfml
cfunited
coldfusion
coldfusion 7
coldfusion 8
conference
cookies
crypto
css
databases
del.icio.us
design
dns
documentation
eclipse
email
errors
feeds
firefox
firewall
flash
flex
folksonomy
forms
foundeo
google
html
http
ie
iis
java
javascript
jdbc
jquery
jvm
linux
mac
macromedia
microsoft
mobile
mozilla
mysql
oracle
osx
performance
postgresql
presentations
regex
rss
ruby
search
security
seo
sitemaps
soap
spam
speaking
sql
sql injection
sqlserver
ssh
ssl
stats
subversion
tagging
tags
tiger
tips
tuning
ui
unix
upload
usability
utils
validation
web services
windows
xml
xss
yahoo
Top Rated Entries
Finding Duplicates with SQLThe 15 Essential UNIX commands
Parsing, Modifying, and outputting XML Documents with Java
AdSense Optimization Tips (from google)
SQL to Select a random row from a database table
Cheat Sheet Roundup - Over 30 Cheatsheets for developers
Howto Create an RSS 2.0 Feed
AJAX Tutorial with Prototype
Subscribe to my RSS Feed:
Use SoloSub to subscribe to my RSS feed using Bloglines, MyYahoo, NewsGator, and more.