Hi, Patrick!
> Hm, I'm sorry, but I can't see how I can do a full text search with the > "Search:" bar. You didn't understand me =) There is no full text search now in W3af, but I plan to research how this full text search worked in WebScarab. > You mention in your post that you want a simple wrapper for sqlite, and you > mention the Active Record pattern which makes it easier to access the data in > the DB. As far as I can see in your source code, there's still so much manual > construction of SQL queries going on, many string concatenations etc. Yes, and this place is only HistoryItem class. In other places in code we can use this object to work with History without any new SQL code. > Have you ever considered using an already existing ORM for Python? I know it > adds another > dependency, but at the moment what I see is the reinvention of the wheel. The > whole code with all the string concatenating going on for building the SQL > queries just doesn't feel "clean", if you know what I mean. Yes, some time ago we alredy talked about using of ORM with Andres. And at the current moment, imho, HistoryItem is better then persist+reqResDBHandler. > What I'd like to have is a clean ORM to the database (SQLAlchemy[0]? + > Elixir[1] > maybe?) so there's no need to write your own code interacting with the > database. I will research SQLAlchemy in the weekend, thanks =) > I also would like to save the requests and responses in the database in a way > that makes the full, raw data accessible to me for searches. I love the idea > of > searching in the data with the search bar using SQL syntax. It gives me the > power necessary to even do complex searches. So I would like to have > unrestricted access to the underlying database with my search. I send the raw > SQL query, w3af gets the results from the database and parses them for display > in the proxy or results view. Perfect :). Not always =) Usually I don't want to thinking about SQL syntax when I want to search something. For example, I want to filter results by host. So I simply insert in search field 'yahoo.com'. Not 'url like '%yahoo.com%''. For Advanced search there are advanced options. > - Storing the requests and responses in an accessible way in the database may > mean that we have to rebuild the FuzzableRequest objects everytime we want > to > use a request from the database. On the other hand, I'm not sure if the > current > pickling/unpickling is that efficient either, actually. By the way, it's very interesting point! What can you suggest? Any way thanks for good critique! It's always helpful =) -- Taras ---- "Software is like sex: it's better when it's free." - Linus Torvalds
pgpwGoNDXVOxP.pgp
Description: PGP signature
------------------------------------------------------------------------------ Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july
_______________________________________________ W3af-develop mailing list W3af-develop@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/w3af-develop
