Welcome to
Sign in
|
Help
in
Diverse (forum)
Romanian Section (group)
(Entire Site)
Search
Home
Blogs
External Feeds
Forums
Photos
Downloads
About Us
»
Romanian Section
»
Diverse
»
Re: Despre ”injecții SQL”
Despre ”injecții SQL”
Last post 02-05-2011, 11:22 PM by
B_gd_n[ ]Sahlean
. 6 replies.
Sort Posts:
Oldest to newest
Newest to oldest
Previous
Next
05-23-2010, 6:10 PM
8295
B_gd_n[ ]Sahlean
Joined on 07-17-2007
Bucuresti
sysadmin
Despre ”injecții SQL”
Reply
Quote
Sursa:
http://xkcd.com/327/
Report abuse
05-25-2010, 11:03 AM
8300
in reply to
8295
Diana
Joined on 03-21-2006
sysadmin
Re: Despre ”injecții SQL”
Reply
Quote
:)
Report abuse
05-31-2010, 7:30 PM
8310
in reply to
8295
xmldeveloper
Joined on 01-18-2006
Bucharest, Romania
Rank NA
Re: Despre ”injecții SQL”
Reply
Quote
Si totul ar fi putut fi rezolvat atat de simplu prin validare si rularea procedurii stocate care introduce un nou elev in contextul de securitate al unui utilizator care are doar dreptul de INSERT pe tabela
Students
Cristian Andrei Lefter, SQL Server MVP
MCT, MCSA, MCDBA, MCAD, MCSD .NET,
MCTS, MCITP - Database Administrator SQL Server 2005
http://sqlserver.ro
Report abuse
05-31-2010, 10:04 PM
8312
in reply to
8310
MrSmersh
Joined on 03-31-2006
Timisoara
sysadmin
Re: Despre ”injecții SQL”
Reply
Quote
Sau ca idee, la toate input string sa puna ''...
Dar voi si acuzat de abordare programator
Report abuse
05-31-2010, 10:32 PM
8313
in reply to
8312
Diana
Joined on 03-21-2006
sysadmin
Re: Despre ”injecții SQL”
Reply
Quote
Pai cine-o fi facut aplicatia aia? :)
Report abuse
06-10-2010, 10:11 AM
8334
in reply to
8313
crestinul
Joined on 09-23-2006
sysadmin
Re: Despre ”injecții SQL”
Reply
Quote
Putea sa foloseasca si query-uri parametrizate-sunt rezxistente la sql injection... sql xommand cu parametri de ex daca foloseste ado.net
Secolul XXI ori va fi religios ori nu va fi deloc
Report abuse
02-05-2011, 11:22 PM
8620
in reply to
8334
B_gd_n[ ]Sahlean
Joined on 07-17-2007
Bucuresti
sysadmin
Re: Despre ”injecții SQL”
Reply
Quote
Report abuse