Learning databases

Discussion in 'NZ Computing' started by Rob, Oct 12, 2006.

  1. Rob

    Rob Guest

    Rob, Oct 12, 2006
    #1
    1. Advertising

  2. In message <>, Rob wrote:

    > http://www.technologyreview.com/read_article.aspx?id=17608&ch=infotech


    For example, most online shopping sites have fields that allow users to
    search for products. But if just the right queries and characters--such
    as quotes or asterisks--are put in the right places in a search field, a
    harmless search for books or videos can become a successful theft of
    credit-card numbers in the company's database. "This is a common attack,
    and many websites are vulnerable," says Nachenberg. "In order to catch
    such a thing, I need to identify that a different query is being sent
    than what is normal."

    That's called an "SQL injection attack". It's not hard to guard against, if
    you write your code properly. The irony is that customers will have the
    money to spend on elaborate ambulances at the bottom of the cliff like
    these learning databases, but not on developers with the skills to avoid
    these sorts of problems in the first place.
    Lawrence D'Oliveiro, Oct 12, 2006
    #2
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. =?Utf-8?B?Z2FsNTQzMjE=?=

    Internet Explorer script error when using Help databases

    =?Utf-8?B?Z2FsNTQzMjE=?=, Jun 26, 2005, in forum: Microsoft Certification
    Replies:
    0
    Views:
    2,149
    =?Utf-8?B?Z2FsNTQzMjE=?=
    Jun 26, 2005
  2. Hansang Bae
    Replies:
    1
    Views:
    946
    shope
    Jul 9, 2003
  3. Irek Kalicy
    Replies:
    0
    Views:
    585
    Irek Kalicy
    Jun 2, 2004
  4. Olav.NET
    Replies:
    4
    Views:
    591
    Sharon Ross
    Jan 23, 2004
  5. WCH
    Replies:
    2
    Views:
    1,151
    Andy Luddy
    Apr 12, 2006
Loading...

Share This Page