Thomas Mueller, in a very clear and detailed manner, explains the various ways of preventing SQL Injection. SQL Injection is one of the biggest security worries. If not handled properly you can leave your entire application open for getting hacked. [Continue]
skip to navigation | content
ifacethoughtsCode Injection And Not Just SQL
Brian Sullivan points out that code injection need not be always through SQL. Though SQL injection is popular, malicious code can be injected through user input during any data retrieval, including for XML and LDAP. He discusses some techniques for protecting against the injection with the common principle of validating every single input from the user. [Continue]
SQL Injection
SQL Injection is probably the best reason, other than speed of execution sometimes, to use stored procedures instead of dynamic SQL queries. Ill-intentioned users can inject character literals through their input that can be used to comment out part of the query being executed. Scott Glu has a tip on ways of preventing it (via Miguel de Icaza). [Continue]
freshthoughts
- Help Yourself With xdg-open
- Software Patents And Open Source
- Another FUD Against Open Source
- A Xubuntu User Again
- Advice On Building Great Products
- Ubuntu Defaults To Google Docs For Netbooks
- Inherently, Design Is A Combination Of Art And Engineering
- New Tools I Picked Up In 2009
- Microsoft Agrees To Free Browser Choice
- Get OpenID With Google Profiles
contactme
badgesand...
- accessibility
- blogging
- books
- cms
- css
- design
- desktop
- entrepreneurship
- estimation
- feeds
- for executives
- india
- linux
- mindworks
- mobile
- open source
- process
- programming
- project management
- rant
- requirements
- roi
- software for business
- standards
- testing
- this
- toc
- tools
- usability
- web
- wordpress
- wordpress global variables
This is the weblog of Abhijit Nadgouda where he writes down his thoughts on software development and related topics. You are invited to subscribe to the feed to stay updated or check out more subscription options. Or you can choose to browse by one of the topics.