hi, On 8/8/05, Geoff Longman <[EMAIL PROTECTED]> wrote: > Has anyone out there given any serious thought towards a strategy for > preventing these kinds of attacks in Tapestry forms?
using PreparedStatements with bound variables is a good enough solution for SQL insertion (plus throw in the usual basic data validation for good measure). regards, viktor --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
