MySQL University session on November 19: Memcached Functions for MySQL

Memcached Functions for MySQL http://forge.mysql.com/wiki/Memcached_Functions_for_MySQL_%28UDFs%29 This Thursday (November 19th, 14:00 UTC), Patrick Galbraith will present memcached Functions for MySQL (UDFs). This session is about a suite of functions available to use with MySQL that allow you

how to allocate memory for mysql database

hi All how we can allocate memory for mysql database. since we have different storage. each having its own buffer for running the query. in oracle we have some calculation for allocating sga size,like this any method is exist for mysql. i am seeing mysql is using default 8m for all (myisam and

MySQL being hacked with commands through URL

Hello all, My website has been hacked using a url such as: -1%20union%20all%20select%201,2,concat(username,char(58),password),4,5,6%20f rom%20users-- . I have been searching on the web for a solution/fix to this issue and I cannot seem to find one. The command above is

RE: MySQL being hacked with commands through URL

From: James Coffman [mailto:webmas...@cadc.com] Hello all, My website has been hacked using a url such as: -1%20union%20all%20select%201,2,concat(username,char(58),passw ord),4,5,6%20f rom%20users-- . Without more information, it sounds like simple SQL insertion.

Re: MySQL being hacked with commands through URL

On Thu, November 19, 2009 09:47, James Coffman wrote: Hello all, My website has been hacked using a url such as: -1%20union%20all%20select%201,2,concat(username,char(58),password),4,5,6%20f rom%20users-- . I have been searching on the web for a solution/fix to this issue and

RE: MySQL being hacked with commands through URL

From: James Coffman [mailto:webmas...@cadc.com] Hello all, My website has been hacked using a url such as: -1%20union%20all%20select%201,2,concat(username,char(58),passw ord),4,5,6%20f rom%20users-- . Without more information, it sounds like simple SQL insertion.

Re: MySQL being hacked with commands through URL

James Coffman wrote: Hello all, My website has been hacked using a url such as: -1%20union%20all%20select%201,2,concat(username,char(58),password),4,5,6%20f rom%20users-- . I have been searching on the web for a solution/fix to this issue and I cannot seem to find one. The

ODBC MySQL Password as plain text

Hi The MySQL ODBC connection password is stored as plain text in the Windows registry. What is the best way to overcome this issue - to ensure the password is saved securely Thanks, Neil

Re: MySQL being hacked with commands through URL

Hi First things first - prevent access apart from r...@localhost to the users table Neil On Wed, Nov 18, 2009 at 5:50 PM, Gary Smith li...@l33t-d00d.co.uk wrote: James Coffman wrote: Hello all, My website has been hacked using a url such as:

Re: MySQL being hacked with commands through URL

With respect, denying all access to 'users' for anything except r...@localhost sounds like trying to cure dandruff by decapitation. Firstly your web app shouldn't be using root to access your data tables and secondly there's every chance his web server is seperate from his db server. You should

MySQL Community Server 5.1.41 has been released

Dear MySQL users, MySQL Community Server 5.1.41, a new version of the popular Open Source Database Management System, has been released. MySQL 5.1.41 is recommended for use on production systems. For an overview of what's new in MySQL 5.1, please see

Re: MySQL being hacked with commands through URL

On Thu, November 19, 2009 09:47, James Coffman wrote: Hello all, My website has been hacked using a url such as: -1%20union%20all%20select%201,2,concat(username,char(58),password),4,5,6%20f rom%20users-- . I have been searching on the web for a solution/fix to this issue and

Re: Selecting data from multiple tables

Ashley M. Kirchner wrote: Hi folks, I'm trying to, possibly do the impossible here. I have to select data from 4 different tables to come up with the right information and I'm having one heck of time trying to figure it out. This is going to be a long email ... Table_1:

with passing host variables to mySQL

Can someone help me. I am trying to make calls to Mysql from VBscript via= =20ASP But I'm experiencing difficulties with passing host variables to my SQL=20 See example below isbn =3D 717192=20 sql=3D select isbn, book_title, publisher_name FROM cs443.books_availabl= e where isbn=3D isbn

host variables

Can someone help me. I am trying to make calls to Mysql from VBscript via ASP But I'm experiencing difficulties with passing host variables to mysql See examples below isbn =34373 sql= select isbn, book_title, publisher_name FROM cs443.books_available where isbn= isbn The above works but

Re: MySQL being hacked with commands through URL

James Coffman wrote: Hello all, My website has been hacked using a url such as: -1%20union%20all%20select%201,2,concat(username,char(58),password),4,5,6%20f rom%20users-- . I have been searching on the web for a solution/fix to this issue and I cannot seem to find one. The

RE: MySQL being hacked with commands through URL

I have narrowed the problem down to the code as I have been referenced to a million times and I thank you all a million times over on helping me out thus far. Here is where it gets down to the hard part for me (PHP code).. The error is within: elseif ($pageID == ss $item != mostCurrent) {

Re: MySQL being hacked with commands through URL

The bits in your date_format call are confusing your sprintf call date_format(updated, '%W, %M %D, %Y %r' ) elseif ($pageID == ss $item != mostCurrent) { $newsSql = sprintf(SELECT date_format(updated, '%W, %M %D, %Y %r' ) as byline, successId, title, story, picpath, staffID FROM success