FYI... if you're running PostgreSQL with SQLObject on a public site you'll want to check this out. (SQLAlchemy is not affected.)
Kevin ---------- Forwarded message ---------- From: Michael Bayer <[EMAIL PROTECTED]> Date: May 23, 2006 11:02 PM Subject: [Sqlalchemy-users] Postgres injection attack To: sqlalchemy-users <[email protected]> just saw this today and thought it was interesting....a postgres injection attack that *only* bind parameters protects against: http://www.newsforge.com/article.pl?sid=06/05/23/2141246 ------------------------------------------------------- All the advantages of Linux Managed Hosting--Without the Cost and Risk! Fully trained technicians. The highest number of Red Hat certifications in the hosting industry. Fanatical Support. Click to learn more http://sel.as-us.falkag.net/sel?cmd=lnk&kid=107521&bid=248729&dat=121642 _______________________________________________ Sqlalchemy-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/sqlalchemy-users -- Kevin Dangoor TurboGears / Zesty News email: [EMAIL PROTECTED] company: http://www.BlazingThings.com blog: http://www.BlueSkyOnMars.com --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "TurboGears" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/turbogears -~----------~----~----~----~------~----~------~--~---
