hi,

On 8/8/05, Geoff Longman <[EMAIL PROTECTED]> wrote:
> Has anyone out there given any serious thought towards a strategy for
> preventing these kinds of attacks in Tapestry forms?

using PreparedStatements with bound variables is a good enough
solution for SQL insertion (plus throw in the usual basic data
validation for good measure).

regards,
  viktor

---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to