Is there a kind of way to stop the botnet from spamming websites? Hacker has to stop it? or right now if it is automated is there any way?
Radek On Fri, Jul 25, 2008 at 12:56 PM, Dave Watts <[EMAIL PROTECTED]> wrote: > > Seeing as how this type of sql injection attack is > > succeeding so much (even my favorite fishing website has been > > down for days due to it (it is a .cfm site))... > > how about changing cfquery so that by default, only ONE sql > > statment can be sent. Let us override that with a parameter > > in cfquery or a cfprocessing driective type of thing in our > > application.cfm.. > > The problem with this, as Jochem points out, is that it would require CF to > parse SQL. This is a losing battle, as each database will do different > things when given an SQL batch. What if databases automatically escape > Unicode character sequences? Then CF would have to do the same. > > Dave Watts, CTO, Fig Leaf Software > http://www.figleaf.com/ > > Fig Leaf Software provides the highest caliber vendor-authorized > instruction at our training centers in Washington DC, Atlanta, > Chicago, Baltimore, Northern Virginia, or on-site at your location. > Visit http://training.figleaf.com/ for more information! > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;203748912;27390454;j Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:309708 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
