I often help people who are reporting that CF is “running hot on the CPU”, maybe reaching 80 or even 100% of the CPU, whether in spikes or for extended periods. What might you propose people look at, when you’ve heard that? I’ve heard all kinds of things over the years, often focused on coding, or perhaps jvm tuning.
But as is often the case in a lot of the CF server troubleshooting consulting I do, I find the causes to be far less often what most people seem to suspect. So what would I look for when someone reported high CPU in ColdFusion (or Railo)? Read on.
ColdFusion Lockdown/Security guides: there are several, and some you may have missed
While helping people with various problems in my CF server troubleshooting services, I often have the chance to help people identify security vulnerabilities, especially in their configuration of CF and/or their web server, and sometimes related to their code.
I was wanting to point out to someone the various ColdFusion security resources, and while I have a category on them in my CF411 site, I thought this was a list worth pulling out into its own blog entry and expanding a bit.
You may be surprised to find that there are more to CF security guidelines than just the venerable server “lockdown guide” (for those administering and configuring CF, the OS, and the web server, among other things).
Did you know that there have been “developer security guidelines” as well, focused instead on coding? This latter guide has gone through three iterations, including just recently, as I’ll discuss along with the lockdown guides, below.
New version of cfBrackets, the ColdFusion plugin for Brackets:
0.1.1 / 2014-06-08 / Updated code for change file API of brackets. Added CF11 support, better Railo support and tag support for OpenBD.
cfBrackets adds support for ColdFusion Markup Language (CFML) to Brackets Code Editor. It’s an extension and can be simply installed with the extension manager inside of Brackets.
Ben Nadel was on fire at the Scotch on the Rocks 2013 conference. This is a look back at some of the madness he got up to at the event to the sound of Gangnam Style, along with a special recreation of a certain scene in the video…
I wonder what fun Scotch on the Rocks 2014 will bring this week in Edinburgh?
Last years ‘Scotch Shake’ video, featuring Ben and other members of the conference.
Scotch on the Rocks – the best web development conference in the UK – http://www.sotr.eu
It’s the roadway of the future! Feel inspired? Help us bring this project to the next step:
By Sean Corfield
I don’t think I’ve actually blogged about TeamCFAdvance yet. That’s very lax of me. TeamCFAdvance is an initiative started by Denard Springle last year to help foster the development of Free Open Source Software (FOSS) in the CFML community. Yes, there’s been several attempts at this in the past. I’ve been involved with a few of them myself. The Open CFML Foundation is one example, focused on promoting awareness of open source solutions that are written in CFML – reaching out beyond our community. But TeamCFAdvance is very pragmatic: it’s aimed directly at our developers, to educate and encourage, to ensure that great projects continue to be maintained, even when their maintainers move on.