System information
Adobe documentation - Confidential
# /usr/bin/htdigest -c /etc/httpd/cfadmin.digest.pwd cfadmins
petefreitag
The above command will create or overwrite password file in the specified location, and create a user
named petefreitag in group cfadmins. To add more users omit the -c flag.
Next let’s specify permissions such that only root can write to this file, and apache can only read it:
# chown root:apache /etc/httpd/cfadmin.digest.pwd
# chmod 640 /etc/httpd/cfadmin.digest.pwd
Now add the following to the httpd.conf file:
<LocationMatch "(?i).*/CFIDE/administrator">
AuthType Digest
AuthName "cfadmins"
AuthDigestProvider file
AuthUserFile /etc/httpd/cfadmin.digest.pwd
Require valid-user
</LocationMatch>
Restart Apache and visit https://localhost/CFIDE/administrator/
and ensure that you are prompted with
a password, and that SSL is required.
Update Java Virtual Machine
The Java Virtual Machine included with the ColdFusion installer may not contain the latest java security
hotfixes. You must periodically check with Oracle for JVM security hotfixes.
Download the RPM for the latest supported JRE from java.oracle.com
. Install the rpm:
rpm -ivh jre-7uXX-linux-x64.rpm
After you run the binary the JVM is installed in /usr/java/ a symbolic link is created pointing to the latest
installed version /usr/java/latest/ you point ColdFusion to this path to simplify future JVM updates.
Verify that the version of Java in /usr/java/latest/ is a version supported for ColdFusion 11. At the time
of this writing Java 1.7 is the latest supported major version of Java. See this page for current
information about JVM version support:
http://helpx.adobe.com/coldfusion/kb/upgrading-java-
coldfusion.html
# /usr/java/latest/bin/java -version
Locate the jvm.config file, (by default it is located in /opt/coldfusion10/cfusion/bin/) and make a
backup:
# cp jvm.config jvm.config.backup
Adobe documentation - Confidential