Skip site navigation (1) Skip section navigation (2)

Re: Protection from SQL injection

From: Thomas Kellerer <spam_eater(at)gmx(dot)net>
To: pgsql-sql(at)postgresql(dot)org
Subject: Re: Protection from SQL injection
Date: 2008-04-26 21:32:58
Message-ID: fv0727$cge$1@ger.gmane.org (view raw or flat)
Thread:
Lists: pgsql-sql
Thomas Mueller wrote on 26.04.2008 18:32:
> Literals can still be used when using query tools, or in applications considered 'safe'. 
I fail to see how the backend could distinguish between a query sent by a query 
tool and a query sent by an "application".

Thomas


In response to

Responses

pgsql-sql by date

Next:From: Scott MarloweDate: 2008-04-27 00:21:48
Subject: Re: Protection from SQL injection
Previous:From: Jaime CasanovaDate: 2008-04-26 21:31:46
Subject: Re: Protection from SQL injection

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group