This week's book giveaway is in the Agile and other Processes forum.
We're giving away four copies of The Mikado Method and have Ola Ellnestam and Daniel Brolund on-line!
See this thread for details.
The moose likes JDBC and the fly likes sql injection Big Moose Saloon
  Search | Java FAQ | Recent Topics
Register / Login


Win a copy of The Mikado Method this week in the Agile and other Processes forum!
JavaRanch » Java Forums » Databases » JDBC
Reply Bookmark "sql injection" Watch "sql injection" New topic
Author

sql injection

fang eve
Greenhorn

Joined: Jun 22, 2006
Posts: 26
posted private message
0
Quote
how to prevent sql injection from my application? i read about 1 site saying using prepared statement. Any other way to do it?
Jeroen T Wenting
Ranch Hand

Joined: Apr 21, 2006
Posts: 1847
posted
0
Quote
validate all your input for correctness.

42
Bear Bibeault
Author and ninkuma
Marshal

Joined: Jan 10, 2002
Posts: 56207
    
  13

I like...
IntelliJ IDE jQuery Mac OSX
posted private message
0
Quote
fang, please take the time to choose appropriate forums for your posts.

I've moved this one to the JDBC forum.

[Smart Questions] [JSP FAQ] [Books by Bear] [Bear's FrontMan] [About Bear]
Ulf Dittmer
Marshal

Joined: Mar 22, 2005
Posts: 35252
    
    7
posted
0
Quote
The Security FAQ links to two articles on SQL injection.

Android appsImageJ pluginsJava web charts
 
I agree. Here's the link: http://ej-technologies/jprofiler - if it wasn't for jprofiler, we would need to run our stuff on 16 servers instead of 3.
 
subject: sql injection
 
Similar Threads
avoid sql injection
PreparedStatement - to use or not to use
Struts and SQL Injection.
Does this sound believable?
Using strings within strings to read vars?