{Carrer web log}

What is SQL Injection? Learn more about Sql injection and prevention techniques with ASP, ASP.NET, PHP, ColdFusion

Wednesday, June 21, 2006 { 1 Comments }

“SQL Injection is a technique which enables an attacker to execute unauthorized SQL commands by taking advantage of unsanitized input opportunities in Web applications building dynamic SQL queries.” –Wikipedia

There are some useful links that will help you to learn more about Sql injection:


General links:

http://en.wikipedia.org/wiki/SQL_Injection

http://en.wikipedia.org/wiki/Sql_injection

http://www.unixwiz.net/techtips/sql-injection.html

http://www.imperva.com/application_defense_center/white_papers


PDF Articles:
http://www.spidynamics.com/

http://www.ngssoftware.com/

http://www.appsecinc.com



PHP
http://en.wikibooks.org/wiki/Programming:PHP:SQL_Injection

http://shiflett.org/articles/security-corner-apr2004

http://dev.mysql.com/




ASP
http://www.4guysfromrolla.com/webtech/061902-1.shtml

http://www.sitepoint.com/article/sql-injection-attacks-safe

http://msdn.microsoft.com/

http://www.nextgenss.com/



ASP.NET
http://msdn.microsoft.com/

http://www.developer.com


Cold Fusion
http://www.forta.com

http://www.adobe.com

Making Sense of the XML DataType in SQL Server 2005

Wednesday, June 14, 2006 { 0 Comments }

Making Sense of the XML DataType in SQL Server 2005: "In SQL Server 2005, XML becomes a first-class data type. Developers can make minor remote modifications to stored XML documents easily, taking advantage of new support for XML schema-based strong typing, and server-based XML data validation. "

Asp:GridView Control

Friday, June 09, 2006 { 2 Comments }

An asp:gridview control is the most powerful of the server controls used to display external data. It is especially designed to work with database tables, but can provide display of other relational data sources organized into rows and columns. It is also designed for use with data source controls so that little or no scripting is required to populate the control with database information. The GridView includes features for editing of databases as well as for their display.

read more >>

Oracle,Db2,Sql server,Mysql,Postgresql - see google trends

Wednesday, June 07, 2006 { 0 Comments }

Who is the most popular database?

world all:
oracle,db2,sql server,mysql,postgresql - world

US:
oracle,db2,sql server,mysql,postgresql - US

UK:
oracle,db2,sql server,mysql,postgresql - UK

Germany:
oracle,db2,sql server,mysql,postgresql - Germany

Italy:
oracle,db2,sql server,mysql,postgresql - Italy

A Server-Side Assist for Loading Client-Side JavaScript Code

Thursday, June 01, 2006 { 0 Comments }

A Server-Side Assist for Loading Client-Side JavaScript Code: "One of the reasons frameworks are so important is that JavaScript isn't quite ready for programming in the large. Don't get me wrong—the language is beautifully designed, but some of the subtleties of in-browser programming, to say nothing of cross-browser portability issues, can make JavaScript development something less than smooth. One example is its poor support for the include statement, which enables one file to draw in the contents of another—usually a file containing a useful library. Just about every language has a mechanism for this, and various Web technologies have a number of different ways of providing include functionality."