On Aug 18, 2009, at 7:25 PM, DJ Gregor wrote: > Lastly, we might want to make a parameterization-friendly version of > Querier to make it easier to upgrade old SQL queries in an SQL > injection-resistant manner.
Great idea. While there should be little danger to a network posed by owning an OpenNMS server, the latest arrest on the 130 million credit card number scheme showed that SQL injections are a) pretty common and b) pretty powerful. We want to avoid them, of course. -T _______________________________________________________________________ Tarus Balog, OpenNMS Maintainer Main: +1 919 533 0160 The OpenNMS Group, Inc. Fax: +1 773 345 3645 Email: ta...@opennms.org URL: http://www.opennms.org PGP Key Fingerprint: 8945 8521 9771 FEC9 5481 512B FECA 11D2 FD82 B45C ------------------------------------------------------------------------------ Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july _______________________________________________ Please read the OpenNMS Mailing List FAQ: http://www.opennms.org/index.php/Mailing_List_FAQ opennms-devel mailing list To *unsubscribe* or change your subscription options, see the bottom of this page: https://lists.sourceforge.net/lists/listinfo/opennms-devel
