On 1/23/07, Judah McAuley <[EMAIL PROTECTED]> wrote: > Charlie Griefer wrote: > > don't forget that preventing SQL injection attacks is only one benefit > > of cfqueryparam. creating bind variables to increase performance is > > another :) > > > > Fair enough, although I believe that this is true only if the query is > used in a loop. In this particular instance, though, I would use the > sqlserver function getdate() instead of a CF expression anyway. Each to > their own.
no question about using the getDate() function (or whatever function is supported by your database of choice). i don't think the cfqueryparam/bind variables/performance is unique to loops tho. -- Charlie Griefer ================================================ "...All the world shall be your enemy, Prince with a Thousand Enemies, and whenever they catch you, they will kill you. But first they must catch you, digger, listener, runner, prince with a swift warning. Be cunning and full of tricks and your people shall never be destroyed." ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Upgrade to Adobe ColdFusion MX7 Experience Flex 2 & MX7 integration & create powerful cross-platform RIAs http:http://ad.doubleclick.net/clk;56760587;14748456;a?http://www.adobe.com/products/coldfusion/flex2/?sdid=LVNU Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:267403 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
