Adobe® ColdFusion® 10 Server Lockdown Guide
Adobe® ColdFusion® 10 Server Lockdown Guide
Adobe® ColdFusion® 10 Server Lockdown Guide
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Setting Default Recommendation Description<br />
Disable<br />
updating<br />
ColdFusion<br />
internal<br />
cookies using<br />
ColdFusion<br />
tags/function<br />
s.<br />
Checked on<br />
Secure Profile<br />
5.5 <strong>Server</strong> Settings > Mail<br />
Checked if all sites<br />
require SSL.<br />
Setting Default Recommendation Description<br />
Enable SSL<br />
socket<br />
connections<br />
to mail server<br />
Enable TLS<br />
connection to<br />
mail server<br />
Unchecked Checked if<br />
supported<br />
Unchecked Checked if<br />
supported<br />
5.6 Data & Services > Data Sources<br />
Setting Default Recommendation Description<br />
Login<br />
Timeout (sec)<br />
You can use this feature to prevent a<br />
developer from overriding your<br />
global session cookie security<br />
settings.<br />
Consider enabling SSL or TLS<br />
encryption for sending mail with<br />
ColdFusion.<br />
Consider enabling SSL or TLS<br />
encryption for sending mail with<br />
ColdFusion.<br />
30 Seconds 5 Seconds Decrease this value to be less than<br />
the Timeout Requests after setting.<br />
67