Adobe 38043740 Lockdown Guide - Page 23
Create a Website For ColdFusion Administrator
UPC - 883919135168
View all Adobe 38043740 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 23 highlights
URI /cffileservlet Purpose Safe to Block Serves dynamically generated assets. It supports the cfreport, cfpresentation, and cfimage (with action=captcha and action=writeToBrowser) tags Only if cfreport, cfpresentations and cfimage are not used. /rest /WSRPProducer .svn Used for CF10 Rest web services support. Only if CF10 REST web services are not used. Web Services Endpoint for WSRP. Usually, unless WSRP is used. If you use subversion to deploy Yes your ColdFusion applications you can block the .svn folders, which may allow source code disclosure. 2.2.9 Create a Website For ColdFusion Administrator First create a self signed certificate (or preferably utilize a certificate from a trusted certificate authority) by clicking on the Server Certificates icon under the IIS root. Click on the link to Create Self-Signed Certificate on the right. Create an empty directory for the web site root of the ColdFusion administrator web site (eg f:\web\cfadmin\) 23