Quick Links

Re: Protection from SQL injection

From:	Stephen Frost <sfrost(at)snowman(dot)net>
To:	Thomas Mueller <thomas(dot)tom(dot)mueller(at)gmail(dot)com>
Cc:	pgsql-hackers(at)postgresql(dot)org
Subject:	Re: Protection from SQL injection
Date:	2008-04-28 19:17:35
Message-ID:	20080428191735.GC29912@tamriel.snowman.net
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

* Thomas Mueller (thomas(dot)tom(dot)mueller(at)gmail(dot)com) wrote:
> As you know, "SQL injection" is the main security problem of databases today.

I think there's a fallacy there- it's the main security problem of
applications (particularly those on the web) today. It hasn't got much
at all to do with the database's security.

Also, hasn't this been discussed to death already?

Stephen

In response to

Protection from SQL injection at 2008-04-28 18:55:34 from Thomas Mueller

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Alvaro Herrera	2008-04-28 20:25:03	Re: [HACKERS] Removing typename from A_Const (was: Empty arrays with ARRAY[])
Previous Message	Josh Berkus	2008-04-28 19:09:29	Re: Protection from SQL injection