Please CC me as I'm on digest:
--
Are there any libraries for data validation available? If one reads
papers like these:
http://www.nextgenss.com/papers/advanced_sql_injection.pdf
http://www.nextgenss.com/papers/more_advanced_sql_injection.pdf
It
Yeah, I'm scared...
Please excuse me but may I say that it seems like you've sent some wrong
info to the wrong mailing list?
I use PHP NOT ASP, I use MySQL or PostgreSQL or Oracle but NOT M$ SQL
Server. And IIS? Of course, some people use it (perhaps) because of some
unavoidable
I didn't see that, what a waste of paper
Randy
- Original Message -
From: Edwin @ [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Friday, August 16, 2002 1:14 PM
Subject: Re: [PHP] SQL Injection/Data Balidation
Yeah, I'm scared...
Please excuse me but may I
Actually, I DID read the articles before I replied.
If you read it again, the basic problem is not about any extended SQLServer
functionality--it's about how ASP works AND how the database server was
configured AND how Window$ works.
Sorry, but the attacks mentioned CANNOT be done on any of
Oops! Sorry! I meant to say apostrophe and not single quotes...
And sorry 'bout this additional post...
Regards,
- E
Actually, I DID read the articles before I replied.
If you read it again, the basic problem is not about any extended
SQLServer functionality--it's about how ASP works AND
5 matches
Mail list logo