• Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint
Share this Page URL
Help

8. Security > 8.1. Security Basics

Security Basics

Before we dive into the different security techniques, let’s look at some general dos and don’ts to consider when designing and implementing a security solution for your ColdFusion applications:

  • Don’t base security solely on a user’s IP address. IP addresses are easily spoofed and can often change during a user’s session (especially in the case of AOL users because of the way AOL’s network works). Additionally, dialup users most likely won’t have the same IP address the next time they dial in and use your application because most ISPs use DHCP.

  • Do use SSL wherever necessary to encrypt the session between the server and the browser. Because SSL is handled at the web-server level and not by ColdFusion, you need to consult the documentation for your particular web server to determine how to set it up.


PREVIEW

                                                                          

Not a subscriber?

Start A Free Trial


  
  • Creative Edge
  • Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint