Hi Christian,
totally correct!
... and if you don't want to use prepared statements, using the query
builders in RIFE will automatically protect the values that you
provide against SQL injection.
Take care,
Geert
On 12 Jan 2007, at 23:26, Christian Vest Hansen wrote:
David HM Spector wrote:
a regex capability for both inList() and my proposed compliment
to it
would be great.. .and could make it easier to keep potentially
insecure crud (like SQL injections) from being pushed through forms.
Shouldn't PreparedStatements make SQL injections a non-issue?
--
Venlig hilsen / Kind regards,
Christian Vest Hansen.
_______________________________________________
Rife-users mailing list
Rife-users@uwyn.com
http://lists.uwyn.com/mailman/listinfo/rife-users
--
Geert Bevin
Uwyn "Use what you need" - http://uwyn.com
RIFE Java application framework - http://rifers.org
Music and words - http://gbevin.com
_______________________________________________
Rife-users mailing list
Rife-users@uwyn.com
http://lists.uwyn.com/mailman/listinfo/rife-users