Q&A
Q1: | What types of files can be uploaded and managed with <CFFILE>? |
A1: | <CFFILE> doesn't care much about the types of files users upload to your server. It simply accepts them and processes them based on the parameters you specify in the tag. |
Q2: | Why is it such a security risk to allow users upload access? |
A2: | It is a risk because crafty hackers can do a lot with directory access, even if they're not actually able to run files. Any form of direct access to a server's files or directories should be seen as a potential hole for intruders. |
Q3: | I built a page to enable users to upload files, but when I test it, ColdFusion tells me the DESTINATIONdirectory doesn't exist. What gives? |
A3: | ColdFusion must have access to a directory before it can save files ... |
Get Sams Teach Yourself ColdFusion® in 21 Days now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.