DCPM: CGI and Database sanitising
Simon Waters
Simon at wretched.demon.co.uk
Thu Oct 16 14:41:16 CDT 2003
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
quote seems a bit weak for SQL sanitising.
Having looked around for "SQL injection" preventation, the Internet is
fill of how not to do things, but very little on the right way to do things.
What ways do people use to sanitize data from tainted CGI data, for use
in database input, or do you al studiously avoid creating SQL and only
use place holders and other such techniques?
Urm when are we meeting, someone name a day and a pub quickly?
-----BEGIN PGP SIGNATURE-----
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQE/jvRbGFXfHI9FVgYRAhVBAKCO49pA1IDER/0MGifmx3dHxEghUwCgzGdb
9qz2nKFkbAy18fNZ3/Wv810=
=tyAU
-----END PGP SIGNATURE-----
More information about the Devoncornwall-pm
mailing list