<br><br><div><span class="gmail_quote">On 12/10/07, <b class="gmail_sendername">Mathieu Bouchard</b> <<a href="mailto:matju@artengine.ca">matju@artengine.ca</a>> wrote:</span><blockquote class="gmail_quote" style="margin:0;margin-left:0.8ex;border-left:1px #ccc solid;padding-left:1ex">
On Mon, 10 Dec 2007, Mike McGonagle wrote:<br><br>> Could someone please explain that IMPORTANCE of worrying about SQL<br>> injection? Just how would it effect users of PD?<br><br>We don't know what pd users will do with [psql]. Do you?
</blockquote><div><br class="webkit-block-placeholder"></div><div><br class="webkit-block-placeholder"></div><div>I guess what I am getting at is that I don't see how we can prevent people from using this maliciously. If they are creating the SQL and putting the data into it, how can we stop them from being idiots? Are you saying that we need to do data checking prior to the data being sent to the server? Or maybe I am not understanding what you are getting at...
</div><div> </div><div>Mike</div><div><br class="webkit-block-placeholder"></div><br><blockquote class="gmail_quote" style="margin:0;margin-left:0.8ex;border-left:1px #ccc solid;padding-left:1ex"> _ _ __ ___ _____ ________ _____________ _____________________ ...
<br>| Mathieu Bouchard - tél:+1.514.383.3801, Montréal QC Canada</blockquote></div><br><br clear="all"><br>-- <br>Peace may sound simple—one beautiful word— but it requires everything we have, every quality, every strength, every dream, every high ideal.
<br>—Yehudi Menuhin (1916–1999), musician