Boost mailing page: Re: [boost] SQL library with full embedded SQL-syntax

Date view	Thread view	Subject view	Author view

From: Michael Walter (michael.walter_at_[hidden])
Date: 2007-03-16 11:53:44

Next message: Douglas Gregor: "[boost] [Report] 36 regressions on RC_1_34_0 (2007-03-16)"
Previous message: Jorge Lodos: "Re: [boost] SQL library with full embedded SQL-syntax"
In reply to: Jorge Lodos: "Re: [boost] SQL library with full embedded SQL-syntax"
Next in thread: Jorge Lodos: "Re: [boost] SQL library with full embedded SQL-syntax"
Reply: Jorge Lodos: "Re: [boost] SQL library with full embedded SQL-syntax"

Hi,

On 3/16/07, Jorge Lodos <lodos_at_[hidden]> wrote:
> Security is another reason to go away from sql queries as strings.
> Prevent SQL injection attacks.

You bind your parameters, you don't have any problems (except when
this doesn't work, but then stored procedures don't help either).

Regards,
Michael

Next message: Douglas Gregor: "[boost] [Report] 36 regressions on RC_1_34_0 (2007-03-16)"
Previous message: Jorge Lodos: "Re: [boost] SQL library with full embedded SQL-syntax"
In reply to: Jorge Lodos: "Re: [boost] SQL library with full embedded SQL-syntax"
Next in thread: Jorge Lodos: "Re: [boost] SQL library with full embedded SQL-syntax"
Reply: Jorge Lodos: "Re: [boost] SQL library with full embedded SQL-syntax"

Date view	Thread view	Subject view	Author view