Quick Links

Re: Are new connection/security features in order, given connection pooling?

From:	John R Pierce <pierce(at)hogranch(dot)com>
To:	pgsql-general(at)postgresql(dot)org
Subject:	Re: Are new connection/security features in order, given connection pooling?
Date:	2017-01-11 08:55:48
Message-ID:	8baeae93-9e1e-e757-ee11-3fcd7d3dc204@hogranch.com
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-general

On 1/11/2017 12:49 AM, Guyren Howe wrote:
> would prevent an SQL injection from wrecking havoc.

sql injection is quite easy to avoid. always make parameterized
queries, never use client supplied data to assemble a query with string
concatenation.

voila, no injection possible.

--
john r pierce, recycling bits in santa cruz

In response to

Re: Are new connection/security features in order, given connection pooling? at 2017-01-11 08:49:19 from Guyren Howe

Browse pgsql-general by date

	From	Date	Subject
Next Message	Sairam Gaddam	2017-01-11 08:56:51	How to identify Primary key column during build stage of Custom index?
Previous Message	Guyren Howe	2017-01-11 08:49:19	Re: Are new connection/security features in order, given connection pooling?