> What's the best practice is using stored procedures, should > they replace all queries or just complex queries?
If possible, I'd replace all inline SQL with stored procedures in an application. There are gains both in security and performance, if done right. Since I feel like being a bit self-indulgent, I'll mention that the security implications of using stored procedures are discussed in Fig Leaf's new course, "Securing ColdFusion Servers on Windows". Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ voice: (202) 797-5496 fax: (202) 797-5444 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Archives: http://www.mail-archive.com/[email protected]/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
