Boost :

From: Michael Walter (michael.walter_at_[hidden])
Date: 2007-03-16 11:53:44

• Next message: Douglas Gregor: "[boost] [Report] 36 regressions on RC_1_34_0 (2007-03-16)"
• Previous message: Jorge Lodos: "Re: [boost] SQL library with full embedded SQL-syntax"
• In reply to: Jorge Lodos: "Re: [boost] SQL library with full embedded SQL-syntax"
• Next in thread: Jorge Lodos: "Re: [boost] SQL library with full embedded SQL-syntax"
• Reply: Jorge Lodos: "Re: [boost] SQL library with full embedded SQL-syntax"

Hi,

On 3/16/07, Jorge Lodos <lodos_at_[hidden]> wrote:
> Security is another reason to go away from sql queries as strings.
> Prevent SQL injection attacks.

You bind your parameters, you don't have any problems (except when
this doesn't work, but then stored procedures don't help either).

Regards,
Michael

• Next message: Douglas Gregor: "[boost] [Report] 36 regressions on RC_1_34_0 (2007-03-16)"
• Previous message: Jorge Lodos: "Re: [boost] SQL library with full embedded SQL-syntax"
• In reply to: Jorge Lodos: "Re: [boost] SQL library with full embedded SQL-syntax"
• Next in thread: Jorge Lodos: "Re: [boost] SQL library with full embedded SQL-syntax"
• Reply: Jorge Lodos: "Re: [boost] SQL library with full embedded SQL-syntax"

Boost list run by bdawes at acm.org, gregod at cs.rpi.edu, cpdaniel at pacbell.net, john at johnmaddock.co.uk