injection | iface thoughts

ifacethoughts

Feb 3, 2007

Format String Vulnerabilities

Hal Burch and Robert C. Seacord explain programming language format string vulnerabilities. They also illustrate that, as is the usual misconception, C and C++ are not the only ones vulnerable to the exploits. [Continue]

Oct 7, 2006

SQL Injection

SQL Injection is probably the best reason, other than speed of execution sometimes, to use stored procedures instead of dynamic SQL queries. Ill-intentioned users can inject character literals through their input that can be used to comment out part of the query being executed. Scott Glu has a tip on ways of preventing it (via Miguel de Icaza). [Continue]

freshthoughts

contactme

Abhijit Nadgouda

iface Consulting

anadgouda@gmail.com

India

+91 9819820312

Y!: anadgouda
GTalk: anadgouda@gmail.com
MSN: anadgouda@hotmail.com
Skype: anadgouda
My bookmarks

currentproject

Complete Wellbeing

divinetaste

badgesand...

accessibility
blogging
books
cms
css
design
desktop
entrepreneurship
estimation
feeds
for executives
india
linux
mindworks
mobile
open source
process
- agile
programming
- ajax
- cpp
- csharp
- erlang
- java
- javascript
- php
- python
- ruby
project management
rant
requirements
roi
software for business
standards
testing
this
toc
tools
usability
web
wordpress
wordpress global variables

This is the weblog of Abhijit Nadgouda where he writes down his thoughts on software development and related topics. You are invited to subscribe to the feed to stay updated or check out more subscription options. Or you can choose to browse by one of the topics.

Twitter - #mumbai - The city has started working today. The fears are still there, but the spirit will help in fighting it.

Served in 0.635 seconds using 21 queries.