Prevention Measures to Avoid SQL Injection
This is a discussion on Prevention Measures to Avoid SQL Injection within the Database Support forums, part of the Web Development category; Measures to avoid SQL injection 1 Validate all input coming from the user on the server. 2 Avoid the use ...
| |||||||
| Register | FAQ | Members List | Calendar | Mark Forums Read |
|
#1
01-31-2008, 09:27 PM
| |||
| |||
 Prevention Measures to Avoid SQL Injection Measures to avoid SQL injection 1 Validate all input coming from the user on the server. 2 Avoid the use of dynamic SQL queries if there an alternate method is available. 3 Use parameterized stored procedure with embedded parameters. 4 Execute stored procedures using a safe interface such as Callable statements in JDBC or CommandObject in ADO. 5 Use a low privileged account to run the database. 6 Give proper roles and privileges to the stored procedure being used in the applications.     |
 |
« Previous Thread
|
Next Thread »
| Thread Tools | |
| Display Modes | |
Linear Mode
| |
Similar Threads | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Sql Injection | vadivelanshanmugam | Database Support | 0 | 01-31-2008 08:51 PM |
| security measures for .NET Remoting | Arun | ASP and ASP.NET Programming | 1 | 08-17-2007 11:15 PM |
| Microsoft takes new privacy measures | senthilkannan | Microsoft | 0 | 07-23-2007 02:03 AM |
| What is SQl injection ? | sundarraja | Database Support | 1 | 07-20-2007 11:50 PM |
| Javascript Injection | Jeyaseelansarc | HTML, CSS and Javascript Coding Techniques | 0 | 05-18-2007 10:06 PM |
All times are GMT -7. The time now is 03:38 PM.