Wednesday, July 11, 2007

How to NOT protect your site against SQL injection

Parameterized queries? Input validation? Pfft. Really secure sites don't need that kind of nonsense to protect against SQL injection attacks.  They just kindly ask that you avoid submitting values like "SELECT FROM" or "DROP".

Labels: ,

posted by Ryan at 10:59 PM

1 Comments:

Blogger Michael said...

Can't get much more helpful than that :D

July 16, 2007 12:51 PM  

Post a Comment

<< Home