566 Index
by third parties, 250
See also specific languages
code-signing certificates
for ActiveX controls, 384, 385–386,
400
costs of, 385
testing signature on, 402
See also digital certificates
code testing methods, 510–512
CodeBaseSearchPath, ActiveX controls
and, 379
ColdFusion, 224, 404–450
access pipe problem, 419, 420–423
benefits of programming with,
406–408
calls to external programs by, 240
CFDOCS directory and, 411–412,
436–437
CFIDE directory and, 412–413
CFINCLUDE tag security risk,
414–419
CFML and, 404, 406–407, 408–410
ColdFusion Administrator, 412
ColdFusion Documentation,
411–412
custom tags, 427
data validation and, 428–435
DoS attacks on, 425–426
double SQL problem, 419, 423–424
encrypting, 427–428
error handling and, 438–444
external object/library vulnerabilities, ...