[PD] [psql] object hand-holding
Mike McGonagle
mjmogo at gmail.com
Mon Dec 10 19:43:18 CET 2007
On 12/10/07, Mathieu Bouchard <matju at artengine.ca> wrote:
>
> On Mon, 10 Dec 2007, Mike McGonagle wrote:
>
> > Could someone please explain that IMPORTANCE of worrying about SQL
> > injection? Just how would it effect users of PD?
>
> We don't know what pd users will do with [psql]. Do you?
I guess what I am getting at is that I don't see how we can prevent people
from using this maliciously. If they are creating the SQL and putting the
data into it, how can we stop them from being idiots? Are you saying that we
need to do data checking prior to the data being sent to the server? Or
maybe I am not understanding what you are getting at...
Mike
_ _ __ ___ _____ ________ _____________ _____________________ ...
> | Mathieu Bouchard - tél:+1.514.383.3801, Montréal QC Canada
--
Peace may sound simple—one beautiful word— but it requires everything we
have, every quality, every strength, every dream, every high ideal.
—Yehudi Menuhin (1916–1999), musician
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.puredata.info/pipermail/pd-list/attachments/20071210/1c889f1e/attachment.htm>
More information about the Pd-list
mailing list