in reply to Re: SQL configurations in automated testing "A bit OT"
in thread SQL configurations in automated testing

Your choice of data storage has no relationship with your vulnerability to XSS. The only vulnerability you really care about (from a programming perspective) when picking a RDBMS is SQL Injection and that's solved by DBI. Anything else is the purview of your DBA (you do have one, right) and your sysadmin (you do have one of those, too, right).
My criteria for good software:
  1. Does it work?
  2. Can someone else come in, make a change, and be reasonably certain no bugs were introduced?
  • Comment on Re^2: SQL configurations in automated testing "A bit OT"

Replies are listed 'Best First'.
Re^3: SQL configurations in automated testing "A bit OT"
by skazat (Chaplain) on Nov 21, 2007 at 22:43 UTC
    Like they said. Run your program in Taint mode and use placeholders in queries. That should hit most of your worries.

     

    -justin simoni
    skazat me

[reply]

In Section Seekers of Perl Wisdom