I should probably remove my fingers from the keyboard since I have so
little experience with mssql, but here goes:
Isn't the . only special in field and table names?
If that's where the user input was used, I think it's the programmer's
responsibility to validate/sanitize the input. A plugin
On 31/12/2012 23:24, alonn wrote:
I'm using sqlalchemy orm (with turbogears) to write data from a web
application to an mssql 2005 Db (used by another application, not
maintained by me).
after dealing with a serious case of data corruption (basically
because of user data including the . sign).
Actually I don't know what's causing the corruption but the . looks like
the only unvalid one in a varchar field.
since after the insert the table just stopped working (not responding to
SELECT or DELETE) while the rest of the tables works fine
so I'm looking for something like html markupsafe
On 01/01/2013 19:34, alonn wrote:
Actually I don't know what's causing the corruption but the . looks
like the only unvalid one in a varchar field.
Why would a . in a varchar field not be valid? Just consider
something like Firstname MidInitial. LastName, why would that not be
valid in a
This is what I thought. that the problem is with the application and not
the sql server. unfortunately I try to access the table directly (either
through sqlalchemy or directly from mssql management GUI) and both fail.
the table just doesn't respond to SELECT, DELETE, TRUNCATE etc
On Tuesday,