
428 Chapter 10 • Securing ColdFusion
existence of this program should serve as a warning to people not to
trust their security to an encrypted template.There are plans in the Java
release of ColdFusion to alter the way encryption is done to make it
harder to break.
ColdFusion Application Processing
Most of the security issues that are discussed in this chapter and in the
book are due to unexpected data. It doesn’t matter how well you write
an application if an attacker just has to send in some data that you’re not
prepared to deal with. Data validation is a very important security pre-
caution that can be taken to protect any application. Surprisingly ...