Adobe 38043740 Lockdown Guide - Page 58
Disable access to, internal ColdFusion, Java components, Prefix serialized, JSON with, Maximum Output
![]() |
UPC - 883919135168
View all Adobe 38043740 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 58 highlights
Setting Default Disable access to Unchecked internal ColdFusion Java components Prefix serialized JSON with Unchecked: // Maximum Output Buffer size 1024KB Recommendation Description Checked The internal ColdFusion Java components may allow administrative duties to be performed. Some developers may write code that relies on these components. This practice should be avoided as these components are not documented. Checked: // Lower This setting helps prevent JSON hijacking, and should be turned on. ColdFusion AJAX tags and functions automatically remove the prefix. If developers have written CFC functions with returnformat="json" or use the SerializeJSON function, the prefix will be applied, and should be removed in the client code before processing. Developers can override this setting at the application level. A lower output buffer size may reduce the memory footprint in some applications. 58
![](/manual_guide/products/adobe-38043740-lockdown-guide-7b304c4/58.png)