SQL Injection / Items

Neil Carpenter's Blog : SQL Injection Mitigation: Using Parameterized Queries

Get Feed

Neil Carpenter's Blog : SQL Injection Mitigation: Using Parameterized Queries

Description: Michael Howard wrote an excellent article yesterday on how the SDL addresses SQL injection . He walks through three coding requirements/defenses: Use SQL Parameterized Queries Use Stored Procedures Use SQL Execute-only Permissions As Michael points out,

Original URL: http://blogs.technet.com/neilcar/archive/2008/05/21/sql-injection-mitigation-using-parameterized-queries.aspx

http://blogs.technet.com/neilcar/archive/2008/05/21/sql-injection-mitigation-using-parameterized-queries.aspx

Comments

Public Comments
Add a Comment

Report This

Twine is about discovering, collecting and sharing the content that interests you. Learn More

Join Twine

Stats

1 Twine
Make a comment

First Posted By

Neil Carpenter

Tags

Community Tags

Who's Interested In This?

Neil Carpenter added to SQL Injection 17 months ago