sql injection

Page 1 of 1

2 Replies - 885 Views - Last Post: 26 January 2012 - 12:28 AM Rate Topic: -----

Topic Sponsor:

#1 josiahmahar  Icon User is offline

  • New D.I.C Head

Reputation: 2
  • View blog
  • Posts: 34
  • Joined: 14-October 10

sql injection

Posted 18 January 2012 - 03:03 AM

hey i didnt quite know where to put this but i have recently been learning sql injection and was wondering if anyone knew any good free ebooks on sql databases. i am not learning it to hack but to prevent make my website i am developing from hackers themselves
Is This A Good Question/Topic? 0
  • +

Replies To: sql injection

#2 macosxnerd101  Icon User is offline

  • Self-Trained Economist
  • member icon


Reputation: 7517
  • View blog
  • Posts: 28,881
  • Joined: 27-December 08

Re: sql injection

Posted 19 January 2012 - 07:45 AM

On your front-end application, use Prepared Statements, which separate the SQL statement from the data, making them immune to SQL Injection attacks. Also, they are cached on the database server. So if you are running the same query repeatedly, you can change the parameter values and the query will run more efficiently the next time around.

More on Prepared Statements: http://en.wikipedia....pared_statement
Was This Post Helpful? 3
  • +
  • -

#3 nK0de  Icon User is offline

  • can't spell BITCH without IT
  • member icon

Reputation: 183
  • View blog
  • Posts: 732
  • Joined: 21-December 11

Re: sql injection

Posted 26 January 2012 - 12:28 AM

and of course use parameterized queries in your sql statements. check out this article on the subject matter written by a fellow DIC member, CharlieMay
Was This Post Helpful? 0
  • +
  • -
Page 1 of 1