Central Alabama ColdFusion User Group - 2010
Employment
- Browse "Local Sites" and ask individuals at a site near you how they found their job. Help us keep this list current.
- Look for the word "employment" below and in other archives. Let us know when you learn of opportunities you don't need.
- Or, simply contact the group managers.
4 February 2010 Meeting
Risk!
Just because you can imagine it doesn't mean you should do it. We'll explore business forms, the Payment Card Industry (PCI) Data Security Standard (DSS), and some Open Web Application Security Project (OWASP) cautions.
Business Forms
How do you know that an individual who comes to your site is authorized to represent a business? How do you know that the business exists? How do you gain a sense of how reliable the business is? How do you satisfy a purchase order? We'll review Internet-capable versions of answers to these questions normally handled through paper forms or personal interaction.
PCI DSS
Cheap, shared hosts are fine for some purposes, but when you start accepting credit cards, support requirements increase dramatically. You can dodge some of this by having the payment gateway accept the card information directly from the customer, but whatever path you take has an impact on the user experience.
OWASP
The OWASP top 10 critical risks should be required reading for every developer. They change periodically based on impact and on real-world exploitation. A real eye-opener since 2007 is cross-site request forgery (CSRF). Any site your customer browses while his session at your site is still active can pretend to be your customer and will be able to use your customer's credentials (cookies, etc) to do it.
7 January 2010 Meeting
IDEs
It's time to stop relying on Wordpad and nimble fingers. Here are IDEs we reviewed:
Disk Space
For Marty, the toughest part was moving 45 Gigabytes of family photos to external storage to make room for an IDE.