Pete Freitag's Homepage
Into The Box 2023 Slides
May 23, 2023
I'm back from Houston Texas after another great Into the Box conference. Slides for my talk Taming the top 25 Most Dangerous Software Weaknesses can be found here....
File Created Date Time in ColdFusion / CFML
March 9, 2023
Today I needed to get the time that a file was created from within some CFML code. I had first thought that cfdirectory or directoryList would return this, but it only returns the date the a file was modified, not the date that it was created....
Speaking at ColdFusion Summit Online Next Week
December 1, 2022
I will be giving my talk Taming the Top 25 Most Dangerous Software Weaknesses (for ColdFusion Developers) next Tuesday, December 6th 2022 at 1pm US Eastern Time. You will need to register with Adobe to join, it's free....
OpenSSL and ColdFusion / Lucee / Tomcat
November 2, 2022
I've had a several people asking me about the openssl vulnerabilities that were patched this week: CVE-2022-3602 and CVE-2022-3786 aka Spooky SSL....
ColdFusion Security Training Class December 2022
November 1, 2022
Early bird registration is open for my ColdFusion Security Training deep dive class in December. If you've ever attended one of my conference sessions on ColdFusion Security at Adobe ColdFusion Summit or Into The Box (or even cf....
How Long Has Your ColdFusion Server Been Running?
October 24, 2022
Someone asked on the CFML slack recently how can you find out how long your ColdFusion (or Lucee) server has been running via code.
How long has the server been running?
createObject("java", "java.lang.management....
How long has the server been running?
createObject("java", "java.lang.management....
Adding CloudFlare Turnstile CAPTCHAs to CFML Sites
October 7, 2022
CloudFlare recently released a new CAPTCHA service called Turnstile, which aims to provide a better user experience for CAPTCHA's. At the worst case the user will have to click a checkbox, rather than train a machine learning model solving a puzzle....
ColdFusion Summit 2022 Slides
October 6, 2022
I'm back from another excellent CFSummit. So many great presentations and conversations. This I gave a presentation on the 25 Most Dangerous Software Weaknesses and how they relate to ColdFusion. My company Foundeo Inc....
Ways to suppress a finding in Fixinator
September 8, 2022
Code is complex, so any static application security testing (SAST) tool will find things that may not be an actual security issue. Fixinator has a few different ways we can deal with this problem....
Simple Parallel Execution in ColdFusion or Lucee
August 31, 2022
A really handy feature of the arrayEach() function is the parallel argument. It has been supported in Lucee since 4.5, but ColdFusion 2021 now supports it as well....
Creating a ColdFusion UUID in MySQL
August 16, 2022
The uuid() function in MySQL returns a 36 character hex string, formatted as:
aa479ea9-1d9d-11ed-ba03-564760fe47b7
ColdFusion's createUUID() function returns a 35 character hex string formatted as:...
aa479ea9-1d9d-11ed-ba03-564760fe47b7
ColdFusion's createUUID() function returns a 35 character hex string formatted as:...
Better CFML Code with CI
July 19, 2022
I gave a presentation for the Adobe ColdFusion Developer Week Conference today titled: Better CFML Code with CI. You can find the slides for my talk here, and the video here.
Here is a link to the code samples....
Here is a link to the code samples....