Making It is a weekly audio podcast that comes out every Friday hosted by Jimmy Diresta, Bob Clagett and David Picciuto. Three different makers with different backgrounds talking about creativity, design and making things with your bare hands.
…
continue reading
Вміст надано Ortus Solutions. Весь вміст подкастів, включаючи епізоди, графіку та описи подкастів, завантажується та надається безпосередньо компанією Ortus Solutions або його партнером по платформі подкастів. Якщо ви вважаєте, що хтось використовує ваш захищений авторським правом твір без вашого дозволу, ви можете виконати процедуру, описану тут https://uk.player.fm/legal.
Схожі до Modernize or Die ® Podcast - CFML News Edition
Africa-focused technology, digital and innovation ecosystem insight and commentary.
…
continue reading
Show notes are at https://stevelitchfield.com/sshow/chat.html
…
continue reading
So many podcasts are about our digital devices. Analog(ue) is a show about how these devices make us feel and how they change our lives for the better, but also for the worse. Hosted by Casey Liss and Myke Hurley.
…
continue reading
The Village Global podcast takes you inside the world of venture capital and technology, featuring enlightening interviews with entrepreneurs, investors and tech industry leaders. Learn more at www.villageglobal.vc.
…
continue reading
Everyone has a dream. But sometimes there’s a gap between where we are and where we want to be. True, there are some people who can bridge that gap easily, on their own, but all of us need a little help at some point. A little boost. An accountability partner. A Snooze Squad. In each episode, the Snooze Squad will strategize an action plan for people to face their fears. Guests will transform their own perception of their potential and walk away a few inches closer to who they want to become ...
…
continue reading
The Voice of ASWJ Australia. Listen to & Download Our Latest Programs. Topics: Aqeedah (Creed), Tafsir Qur'an, Islamic Fiqh, History, Youth & Community programs, Medical & Health programs and much much more. Podcasts are in Arabic & English.
…
continue reading
Interviews with mathematics education researchers about recent studies. Hosted by Samuel Otten, University of Missouri. www.mathedpodcast.com Produced by Fibre Studios
…
continue reading
Are you looking for more happiness, success and vitality in your life? Get inspired each week with wellness and performance expert, Integrative Medicine Fellow, author & keynote speaker, Kristel Bauer. Live Greatly shares empowering conversations and insights about happiness, wellness & success to support your personal and professional development. Kristel talks with top experts, leaders and inspiring individuals to help you embrace a growth mindset and excel in your work/life. Kristel then ...
…
continue reading
The Let's Master English podcast is for ESL (English as a Second Language) learners! This podcast has many features--news, Q&A, English learning advice and other fun sections. You can join the Let's Master English community on Google+ and see the full transcripts. Transcripts are made by you, the listeners! I hope you enjoy my podcasts and please visit my website--www.letsmasterenglish.com!
…
continue reading
Player FM - додаток Podcast
Переходьте в офлайн за допомогою програми Player FM !
Переходьте в офлайн за допомогою програми Player FM !
))
Modernize or Die® - CFML News Podcast for March 14th, 2023 - Episode 188
Manage episode 358064319 series 2508132
Вміст надано Ortus Solutions. Весь вміст подкастів, включаючи епізоди, графіку та описи подкастів, завантажується та надається безпосередньо компанією Ortus Solutions або його партнером по платформі подкастів. Якщо ви вважаєте, що хтось використовує ваш захищений авторським правом твір без вашого дозволу, ви можете виконати процедуру, описану тут https://uk.player.fm/legal.
2023-03-14 Weekly News - Episode 188
Watch the video version on YouTube at https://youtube.com/live/v4vxEckWfYg?feature=share
Hosts:
- Gavin Pickin - Senior Developer at Ortus Solutions
- Daniel Garcia - Senior Developer at Ortus Solutions
Thanks to our Sponsor - Ortus Solutions
The makers of ColdBox, CommandBox, ForgeBox, TestBox and all your favorite box-es out there.
A few ways to say thanks back to Ortus Solutions:
- Like and subscribe to our videos on YouTube.
- Help ORTUS reach for the Stars - Star and Fork our Repos
- Star all of your Github Box Dependencies from CommandBox with https://www.forgebox.io/view/commandbox-github
- Subscribe to our Podcast on your Podcast Apps and leave us a review
- Sign up for a free or paid account on CFCasts, which is releasing new content every week
- BOXLife store: https://www.ortussolutions.com/about-us/shop
- Buy Ortus’s Books
- 102 ColdBox HMVC Quick Tips and Tricks on GumRoad (http://gum.co/coldbox-tips)
- Learn Modern ColdFusion (CFML) in 100+ Minutes - Free online https://modern-cfml.ortusbooks.com/ or buy an EBook or Paper copy https://www.ortussolutions.com/learn/books/coldfusion-in-100-minutes
- Join us for the 10th Into the Box - In person ONLY!!!
Patreon Support ( Invigorating ) - UPDATED GOALS
We have 41 patreons:
Goal 1 - 26% - This goal would help us to fully fund the hosting of ForgeBox.io (www.forgebox.io), the ColdFusion software directory.
Goal 2 - 13% - This goal would fund the development of CommandBox CLI, so it can remain FREE and Open Source forever.
Goal 3 - 6% - This goal would help us to fully fund the Modernize or Die podcasts.
https://www.patreon.com/ortussolutions.
News and Announcements
Critical Security Update for ColdFusion APSB23-25
From Adobe
From Foundeo
Adobe has just published a security bulletin APSB23-25, and has released security updates for ColdFusion 2018 and 2021.
We recommend installing these update as soon as possible, because one of the vulnerabilities has been actively exploited by attackers already.
https://helpx.adobe.com/security/products/coldfusion/apsb23-25.html
https://helpx.adobe.com/coldfusion/kb/coldfusion-2018-update-16.html
https://helpx.adobe.com/coldfusion/kb/coldfusion-2021-update-6.html
HackMyCF has been updated to warn you if the hotfix is missing.
It is important to note that if you are on ColdFusion 11, or 2016 that it is possible that your servers could be vulnerable to at least one of these issue as well. However, because these versions reached end of life they are no longer receiving security patches from Adobe.
One thing you can do to mitigate one of these issues is to block requests containing a variable named _cfclient. Some of the filters in FuseGuard may help prevent some attack vectors when configured to. But the best solution is to upgrade to CF2018 or 2021 and apply the patch released today.
--
Foundeo Inc.
ICYMI - Authentication Bypass Vulnerability in Mura CMS and Masa CMS (CVE-2022-47003 and CVE-2022-47002)
Mura CMS is a popular content management system written in ColdFusion/CFML. While it was originally a commercial open source product, it was re-licensed as a closed source application with the release of Mura CMS v10 in 2020. There are forked open source projects based on the last open source release of Mura CMS, including Masa CMS - which is actively maintained.
Multiple versions of Mura CMS and Masa CMS contain an authentication bypass vulnerability that can allow an unauthenticated attacker to login as any Site Member or System User.
https://hoyahaxa.blogspot.com/2023/03/authentication-bypass-mura-masa.html
ICYMI - State of the CF Union 2023 Released
Help us find out the state of the CF Union – what versions of CFML Engine do people use, what frameworks, tools etc.
https://teratech.com/state-of-the-cf-union-2023-survey
New Releases and Updates
ICYMI - CommandBox 5.8.0 Released!
We are pleased to announce the release of CommandBox 5.8.0, which comes with a handful of new features and some important library updates.
Now bundles commandbox-cfconfig, commandbox-dotenv, commandbox-update-check. Automatically installed or updated when you start CLI
Automatically sets the content type in the HTTP response for static file typesl. You can customize in server.json
Config and Module Sync - if you are authenticated to ForgeBox in the CLI, you can synchronize config settings to and from.
Web Server Case Sensitivty - forcing case sensitivity on Windows
REPL improvements
As usual, you can acquire the latest release from our download page or your favorite HomeBrew or apt/yum repo
https://www.ortussolutions.com/products/commandbox#download
https://www.ortussolutions.com/blog/commandbox-580-released
https://commandbox.ortusbooks.com/
ICYMI - First Lucee 6 Beta Released
Remember this is a BETA, so it’s not production ready, what we are looking for in this first BETA release, is for you to try and run your apps / test suites in locally and let us know how it goes for you.
https://dev.lucee.org/t/first-lucee-6-public-beta-is-available-6-0-0-346-beta/12195
Webinar / Meetups and Workshops
Ortus Event Calendar for Google
https://calendar.google.com/calendar/u/0?cid=Y181NjJhMWVmNjFjNGIxZTJlNmQ4OGVkNzg0NTcyOGQ1Njg5N2RkNGJiNjhjMTQwZjc3Mzc2ODk1MmIyOTQyMWVkQGdyb3VwLmNhbGVuZGFyLmdvb2dsZS5jb20
Ortus Webinar - March 17, 2023 - CBSecurity with Luis Majano
Friday, March 17th, at 3pm CST.
Signup Now: https://us02web.zoom.us/meeting/register/tZAsf-6hrzsuE9POBoeyMYsFPY1AN-M2x29F
Ortus Office Hours - Date TBD
Due to spring break, good friday, lots of people at Dev Nexus and CF Summit East, we might pu...
220 епізодів
Поширити
Manage episode 358064319 series 2508132
Вміст надано Ortus Solutions. Весь вміст подкастів, включаючи епізоди, графіку та описи подкастів, завантажується та надається безпосередньо компанією Ortus Solutions або його партнером по платформі подкастів. Якщо ви вважаєте, що хтось використовує ваш захищений авторським правом твір без вашого дозволу, ви можете виконати процедуру, описану тут https://uk.player.fm/legal.
2023-03-14 Weekly News - Episode 188
Watch the video version on YouTube at https://youtube.com/live/v4vxEckWfYg?feature=share
Hosts:
- Gavin Pickin - Senior Developer at Ortus Solutions
- Daniel Garcia - Senior Developer at Ortus Solutions
Thanks to our Sponsor - Ortus Solutions
The makers of ColdBox, CommandBox, ForgeBox, TestBox and all your favorite box-es out there.
A few ways to say thanks back to Ortus Solutions:
- Like and subscribe to our videos on YouTube.
- Help ORTUS reach for the Stars - Star and Fork our Repos
- Star all of your Github Box Dependencies from CommandBox with https://www.forgebox.io/view/commandbox-github
- Subscribe to our Podcast on your Podcast Apps and leave us a review
- Sign up for a free or paid account on CFCasts, which is releasing new content every week
- BOXLife store: https://www.ortussolutions.com/about-us/shop
- Buy Ortus’s Books
- 102 ColdBox HMVC Quick Tips and Tricks on GumRoad (http://gum.co/coldbox-tips)
- Learn Modern ColdFusion (CFML) in 100+ Minutes - Free online https://modern-cfml.ortusbooks.com/ or buy an EBook or Paper copy https://www.ortussolutions.com/learn/books/coldfusion-in-100-minutes
- Join us for the 10th Into the Box - In person ONLY!!!
Patreon Support ( Invigorating ) - UPDATED GOALS
We have 41 patreons:
Goal 1 - 26% - This goal would help us to fully fund the hosting of ForgeBox.io (www.forgebox.io), the ColdFusion software directory.
Goal 2 - 13% - This goal would fund the development of CommandBox CLI, so it can remain FREE and Open Source forever.
Goal 3 - 6% - This goal would help us to fully fund the Modernize or Die podcasts.
https://www.patreon.com/ortussolutions.
News and Announcements
Critical Security Update for ColdFusion APSB23-25
From Adobe
From Foundeo
Adobe has just published a security bulletin APSB23-25, and has released security updates for ColdFusion 2018 and 2021.
We recommend installing these update as soon as possible, because one of the vulnerabilities has been actively exploited by attackers already.
https://helpx.adobe.com/security/products/coldfusion/apsb23-25.html
https://helpx.adobe.com/coldfusion/kb/coldfusion-2018-update-16.html
https://helpx.adobe.com/coldfusion/kb/coldfusion-2021-update-6.html
HackMyCF has been updated to warn you if the hotfix is missing.
It is important to note that if you are on ColdFusion 11, or 2016 that it is possible that your servers could be vulnerable to at least one of these issue as well. However, because these versions reached end of life they are no longer receiving security patches from Adobe.
One thing you can do to mitigate one of these issues is to block requests containing a variable named _cfclient. Some of the filters in FuseGuard may help prevent some attack vectors when configured to. But the best solution is to upgrade to CF2018 or 2021 and apply the patch released today.
--
Foundeo Inc.
ICYMI - Authentication Bypass Vulnerability in Mura CMS and Masa CMS (CVE-2022-47003 and CVE-2022-47002)
Mura CMS is a popular content management system written in ColdFusion/CFML. While it was originally a commercial open source product, it was re-licensed as a closed source application with the release of Mura CMS v10 in 2020. There are forked open source projects based on the last open source release of Mura CMS, including Masa CMS - which is actively maintained.
Multiple versions of Mura CMS and Masa CMS contain an authentication bypass vulnerability that can allow an unauthenticated attacker to login as any Site Member or System User.
https://hoyahaxa.blogspot.com/2023/03/authentication-bypass-mura-masa.html
ICYMI - State of the CF Union 2023 Released
Help us find out the state of the CF Union – what versions of CFML Engine do people use, what frameworks, tools etc.
https://teratech.com/state-of-the-cf-union-2023-survey
New Releases and Updates
ICYMI - CommandBox 5.8.0 Released!
We are pleased to announce the release of CommandBox 5.8.0, which comes with a handful of new features and some important library updates.
Now bundles commandbox-cfconfig, commandbox-dotenv, commandbox-update-check. Automatically installed or updated when you start CLI
Automatically sets the content type in the HTTP response for static file typesl. You can customize in server.json
Config and Module Sync - if you are authenticated to ForgeBox in the CLI, you can synchronize config settings to and from.
Web Server Case Sensitivty - forcing case sensitivity on Windows
REPL improvements
As usual, you can acquire the latest release from our download page or your favorite HomeBrew or apt/yum repo
https://www.ortussolutions.com/products/commandbox#download
https://www.ortussolutions.com/blog/commandbox-580-released
https://commandbox.ortusbooks.com/
ICYMI - First Lucee 6 Beta Released
Remember this is a BETA, so it’s not production ready, what we are looking for in this first BETA release, is for you to try and run your apps / test suites in locally and let us know how it goes for you.
https://dev.lucee.org/t/first-lucee-6-public-beta-is-available-6-0-0-346-beta/12195
Webinar / Meetups and Workshops
Ortus Event Calendar for Google
https://calendar.google.com/calendar/u/0?cid=Y181NjJhMWVmNjFjNGIxZTJlNmQ4OGVkNzg0NTcyOGQ1Njg5N2RkNGJiNjhjMTQwZjc3Mzc2ODk1MmIyOTQyMWVkQGdyb3VwLmNhbGVuZGFyLmdvb2dsZS5jb20
Ortus Webinar - March 17, 2023 - CBSecurity with Luis Majano
Friday, March 17th, at 3pm CST.
Signup Now: https://us02web.zoom.us/meeting/register/tZAsf-6hrzsuE9POBoeyMYsFPY1AN-M2x29F
Ortus Office Hours - Date TBD
Due to spring break, good friday, lots of people at Dev Nexus and CF Summit East, we might pu...
220 епізодів
همه قسمت ها
×
Ласкаво просимо до Player FM!
Player FM сканує Інтернет для отримання високоякісних подкастів, щоб ви могли насолоджуватися ними зараз. Це найкращий додаток для подкастів, який працює на Android, iPhone і веб-сторінці. Реєстрація для синхронізації підписок між пристроями.
Схожі до Modernize or Die ® Podcast - CFML News Edition
Making It is a weekly audio podcast that comes out every Friday hosted by Jimmy Diresta, Bob Clagett and David Picciuto. Three different makers with different backgrounds talking about creativity, design and making things with your bare hands.
…
continue reading
Africa-focused technology, digital and innovation ecosystem insight and commentary.
…
continue reading
Show notes are at https://stevelitchfield.com/sshow/chat.html
…
continue reading
So many podcasts are about our digital devices. Analog(ue) is a show about how these devices make us feel and how they change our lives for the better, but also for the worse. Hosted by Casey Liss and Myke Hurley.
…
continue reading
The Village Global podcast takes you inside the world of venture capital and technology, featuring enlightening interviews with entrepreneurs, investors and tech industry leaders. Learn more at www.villageglobal.vc.
…
continue reading
Everyone has a dream. But sometimes there’s a gap between where we are and where we want to be. True, there are some people who can bridge that gap easily, on their own, but all of us need a little help at some point. A little boost. An accountability partner. A Snooze Squad. In each episode, the Snooze Squad will strategize an action plan for people to face their fears. Guests will transform their own perception of their potential and walk away a few inches closer to who they want to become ...
…
continue reading
The Voice of ASWJ Australia. Listen to & Download Our Latest Programs. Topics: Aqeedah (Creed), Tafsir Qur'an, Islamic Fiqh, History, Youth & Community programs, Medical & Health programs and much much more. Podcasts are in Arabic & English.
…
continue reading
Interviews with mathematics education researchers about recent studies. Hosted by Samuel Otten, University of Missouri. www.mathedpodcast.com Produced by Fibre Studios
…
continue reading
Are you looking for more happiness, success and vitality in your life? Get inspired each week with wellness and performance expert, Integrative Medicine Fellow, author & keynote speaker, Kristel Bauer. Live Greatly shares empowering conversations and insights about happiness, wellness & success to support your personal and professional development. Kristel talks with top experts, leaders and inspiring individuals to help you embrace a growth mindset and excel in your work/life. Kristel then ...
…
continue reading
The Let's Master English podcast is for ESL (English as a Second Language) learners! This podcast has many features--news, Q&A, English learning advice and other fun sections. You can join the Let's Master English community on Google+ and see the full transcripts. Transcripts are made by you, the listeners! I hope you enjoy my podcasts and please visit my website--www.letsmasterenglish.com!
…
continue reading
Player FM - додаток Podcast
Переходьте в офлайн за допомогою програми Player FM !
Переходьте в офлайн за допомогою програми Player FM !
