Hi There, On Fri, Sep 16, 2005 at 03:23:30PM -0500, Brian Cook wrote: > I am wondering if any one knows of a Java package or frame work for > MySQL. Specifically I am looking for the ability to add escape > characters to SQL strings to avoid SQL injection. Thrown together patch > works to get around this problem and am assuming there is likely a > package, project, lib that has already resolved this I could use.
Don't PreparedStatement implementatoins do this? May be up to the Vendor of the JDBC Driver, i'm not this deep in the JDBC specs. > Thoughts? No :) Cheers, Ralf -- Ralf Fischer - me [on server] makii [single dot] de Meet me at Linux Workshop Weekend 2005 @ Linux User Schwabach http://lusc.de/dokuwiki/events/2005/workshopweekend2005 --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
