-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 23/03/12 06:33, Don V Nielsen wrote: > Ruby on Rails -- ActiveRecord. ActiveRecord prevents sql injections, > I think. Using ERB in the html would give you that kind of > functionality. Correct?
I don't see the relevance of your comment. The requirement is for a user to type some or all of an arbitrary SQL statement and then be able to execute that statement against SQLite without "harm" happening. Roger -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iEYEARECAAYFAk9szQcACgkQmOOfHg372QQNQQCfdxINH0/H3g6dXuwQ95l/G9zQ 040AoJolwVp5KpVmsZyMOQN4e0fmUn4H =tkBO -----END PGP SIGNATURE----- _______________________________________________ sqlite-users mailing list sqlite-users@sqlite.org http://sqlite.org:8080/cgi-bin/mailman/listinfo/sqlite-users