In this continuation of the series on security with Flash Media Server, we talk about taking advantage of the Application.xml to enhance your ability to protect your server and application. By understanding the Application.xml file, you can then lock down which functions can be called and how to handle it. We will take advantage of some server side coding and using the FMS admin console to see what is happening on the server side. To finish off we also will cover a few not so known tags in the Application.xml file that should help lock things down against malicious or careless users regarding recording and saving data on the server and connection protocols. These methods are not usable for the streaming version of FMS.