Manualshelf

User Guide

ManualsBrandsMacromedia ManualsOtherCOLDFUSION 5-ADVANCED ADMINISTRATION
919293949596979899100
Configuring Basic Runtime Security 77
Configuring Basic Runtime Security
Basic security lets you disable execution of seven CFML tags that could present
security hazards. You can, however, specify a special directory, called the Unsecured
Tags Directory; this is the only directory from which ColdFusion will execute tags you
disable with Basic security. Tags you disable with Basic security remain disabled if
you switch to Advanced security.
To restrict tag execution
1 Open the ColdFusion Administrator and click the Security link at the top of the
navigation bar.
2 Click the Tag Restrictions link.
3 On the Tag Restrictions page, clear the check box that appears in front of each tag
you want to disable. You can block execution of the following tags:
cfcontent
cfdirectory
cffile
cfobject
cfregistry
cfadminsecurity
cfexecute
cfftp
cflog
cfmail
The cfquery dbtype = dynamic attribute
The connectString attribute, available in the cfgridupdate, cfinsert,
cfquery, cfstoredproc, and cfupdate tags.
4 Click the Submit Changes button.