For some time, I have run the main listing database at www.SMARTERyellowpages.com as read-only, being more than a little paranoid about it. Obviously, this means the queries are read only.
But this complicates updating the database, which I do every 24 hours. Since so many queries are cached, CFQUERYPARAM is of no help in preventing SQL Injection. The vast majority of these are amenable to using VAL to prevent SQL Injection. What are your thoughts on not having the database read-only, or any other related issues, and (me, not users) being able to update a running database? best, paul ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Archives: http://www.houseoffusion.com/cf_lists/index.cfm?forumid=4 Subscription: http://www.houseoffusion.com/cf_lists/index.cfm?method=subscribe&forumid=4 FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
