Adobe® ColdFusion® 10 Server Lockdown Guide
Adobe® ColdFusion® 10 Server Lockdown Guide
Adobe® ColdFusion® 10 Server Lockdown Guide
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
URI Purpose Safe to Block<br />
/CFIDE/administrator ColdFusion Administrator Yes, we will create a dedicated web site<br />
for ColdFusion administrator access.<br />
/CFIDE/adminapi Admin API Usually, if the admin api is called from<br />
internal CFML code it will still work when<br />
the URI is blocked. If the admin api is<br />
accessed through a remote cfc function<br />
call then use another method to protect<br />
this uri (eg IP restriction)<br />
/CFIDE/AIR AIR Sync API Usually, unless AIR sync API is used.<br />
/CFIDE/appdeployment Yes<br />
/CFIDE/classes Contains java applets for<br />
cfgrid, cftree, and cfslider<br />
/CFIDE/componentutils CFC Documentation viewer Yes<br />
/CFIDE/debug Used when debugging is<br />
enabled on the server.<br />
/CFIDE/images Contains two image files that<br />
do not appear to be used<br />
anymore<br />
Usually, unless java applets are used.<br />
Yes<br />
Yes<br />
18