Pete Freitag's Homepage
Better CFML Code with CI
July 19, 2022
I gave a presentation for the Adobe ColdFusion Developer Week Conference today titled: Better CFML Code with CI. You can find the slides for my talk here, and the video here.
Here is a link to the code samples....
Here is a link to the code samples....
Firefox Hosts File Not Working?
July 13, 2022
I'm probably not the first one to notice this, but if you have a hosts file (eg /ect/hosts or c:\windows\system32\drivers\etc\hosts on windows) you might find that recent versions of Firefox will ignore it....
How to read a ColdFusion Stacktrace
June 23, 2022
This question came up recently:
How do you read a stack trace?
Are there any resources that will educate me?...
How do you read a stack trace?
Are there any resources that will educate me?...
How I cut AWS Lambda Java Cold Start Times in Half
April 7, 2022
It is rare that a simple JVM argument change can have a dramatic impact on execution times, but in the case of AWS Lambda adjusting the Tiered Complication settings can have a really big impact on performance in many (but not all) cases....
Spring4Shell and ColdFusion
April 6, 2022
I've had a bunch of people ask me if ColdFusion / Lucee servers need to worry about the recent Java vulnerability in Spring, nick named Spring4Shell, or more formally known as CVE-2022-22965....
Order by NULL Values in MySQL, Postgresql and SQL Server
March 10, 2022
If you have a column that may contain NULL values, and you want sort on that column with an ORDER BY clause, which comes first the null values or the non null values?...
CloudFlare Authenticated Origin Pulls on Nginx or Apache
January 27, 2022
If you are using CloudFlare in front of your web server, it is a good idea to setup CloudFlare Authenticated Origin Pulls. When this is enabled and properly configured only CloudFlare will be able to connect to your origin web server directly....
Log4j 1.x Vulnerability Mitigation Guide
December 23, 2021
Almost every day I see someone asking what to do about log4j 1.2 / 1.x versions. It can be quite a lot of wrap your head around, and it can't be answered easily in a sentence or two....
Log4Shell Vulnerability Timeline
December 18, 2021
When I created a blog entry covering Log4Shell log4j on ColdFusion, and said I would update it as new information comes in, I didn't realize I would be updating it several times a day for the past week....
How to get Log4j Version at Runtime in Java
December 15, 2021
Here's how you can get the version of Log4j you are using at runtime using Java:
Java Code to Get the Log4j Version at Runtime
org.apache.logging.log4j.util.PropertiesUtil.class.getPackage()....
Java Code to Get the Log4j Version at Runtime
org.apache.logging.log4j.util.PropertiesUtil.class.getPackage()....
Log4j CVE-2021-44228 Log4Shell Vulnerability on ColdFusion / Lucee
December 10, 2021
There is a critical security vulnerability (CVE-2021-44228 aka Log4Shell) in the java library log4j which is a popular logging library for java applications. It is included in both Adobe ColdFusion and Lucee for example....
Listing loaded OSGI Bundles in Lucee
September 15, 2021
Here's a quick code snippet that will output a list of OSGI java bundles and bundle versions that are loaded / installed on Lucee:
//CFMLEngine
engine = getPageContext().getCFMLFactory().getEngine();
//org.osgi....
//CFMLEngine
engine = getPageContext().getCFMLFactory().getEngine();
//org.osgi....