Little Bobby Tables visits MySQL.com

From: Joshua Berkus <josh(at)agliodbs(dot)com>
To: pgsql-advocacy(at)postgresql(dot)org
Subject: Little Bobby Tables visits MySQL.com
Date: 2011-03-28 16:40:40
Message-ID: 986787416.35174.1301330440379.JavaMail.root@mail-1.01.com
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-advocacy

All,

Apparently Oracle didn't see fit to activate MySQL's own anti-SQL-injection features on their own site:

http://blog.sucuri.net/2011/03/mysql-com-compromised.html

(wanna bet the site is running 4.1 or something?)

Let that be a lesson to you: sanitize your SQL inputs!

--
Josh Berkus
PostgreSQL Experts Inc.
http://pgexperts.com
San Francisco

--
Josh Berkus
PostgreSQL Experts Inc.
http://pgexperts.com
San Francisco

Responses

Browse pgsql-advocacy by date

  From Date Subject
Next Message Adrian Klaver 2011-03-28 20:20:44 Re: Little Bobby Tables visits MySQL.com
Previous Message Korry Douglas 2011-03-18 13:53:05 Re: Reddit's latest failure & PG