Quick Links

Community
Contributors
Mailing Lists
IRC
Local User Groups
Events
International Sites

Re: SQL injection

From:	Ben <bench(at)silentmedia(dot)com>
To:	Yonatan Ben-Nes <da(at)canaan(dot)co(dot)il>
Cc:	pgsql-general(at)postgresql(dot)org
Subject:	Re: SQL injection
Date:	2005-10-31 18:12:45
Message-ID:	Pine.LNX.4.64.0510311011110.23246@localhost.localdomain
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-general

Maybe I'm not very creative, but it sure seems to me that if you escape your
strings, make sure your numbers are numbers, and your booleans are actually
booleans, then you're protected....

On Mon, 31 Oct 2005, Yonatan Ben-Nes wrote:

> Any new ideas or comments will be received gladly.
>

In response to

SQL injection at 2005-10-31 17:54:58 from Yonatan Ben-Nes

Responses

Re: SQL injection at 2005-11-01 10:45:13 from Matthew D. Fuller

Browse pgsql-general by date

	From	Date	Subject
Next Message	Bill Bartlett	2005-10-31 18:12:50	Re: Oracle 10g Express - any danger for Postgres?
Previous Message	DEV	2005-10-31 18:11:20	replace() and Regular Expressions