(Hardik Shah) A technique often employed by malicious users for gaining illegal access to remote machines, through the web applications’ vulnerability, is SQL injection. The basic idea behind this technique is to run the SQL query, something not intended by the programmer. SQL injection relies heavi
Other News
How to Use the XPathAPI in Flash
(Kris Hadlock) XML has bridged the gap between technologies and added a lot of power to Flash, allowing it to be more dynamic and flexible for building large applications. XML in Flash has been a possibility since Flash 5 with ActionScript 1, and significantly improved when it became a native object
Undocumented DBCC: Command to track memory usage
(Serdar Yegulalp) Among the undocumented SQL Server commands I’ve been covering in the past few weeks, there is one command that helps determine how well SQL Server is managing its memory usage: DBCC MEMUSAGE. Specifically, DBCC MEMUSAGE determines how effectively SQL Server caches data and which ob
Oracle’s FIPS Flagger
(James F. Koopmann) FIPS stands for Federal Information Processing Standards which includes which include a set of standards and guidelines for governments. Included are requirements for SQL to meet a set of standards. Wow! What a mouthfull. Really if you care about this you should do a search on th
Speeding Up AJAX with JSON
(Sean Kelly) When Microsoft added the ActiveX XMLHTTP object to Internet Explorer’s implementation of JavaScript, the company planted the seed for the revolution in Web applications known as Asynchronous JavaScript and XML, or AJAX. Today, Firefox, Safari, Opera, and other browsers all support what
Examining ASP.NET 2.0’s Membership, Roles, and Profile – Part 3
(Scott Mitchell) The membership and roles providers used by ASP.NET by default are the SqlMembershipProvider and SqlRoleProvider, respectively, which serialize membership and roles information to a SQL Server database. Specifically, this information is stored in a variety of pre-defined tables and a
C# Generics Part 3/4: Casting, Inheritance, and Generic Methods
(Patrick Smacchia) From now on, we will suppose that T is a parameter type. The C#2 language allows you to: –Cast implicitly an instance of a type T (if T is a value type, else a reference of type Tobjet type. If T is a value type, a boxing operation will occur. –Cast explicitly a reference o
Impersonation With Asp.Net
(Steve Abram) Okay, so I developed a rather simple web application used to track forms in an office. It seemed easy and harmless enough. But the trouble began when I went to deploy it.
Configuring RHEL/Centos 4.2 Server for Oracle RAC 10g R2 Readiness
(Tarry Singh) In part 9 of this series, we will continue setting up our Redhat/Centos 4.2. There is already a 4.3 release downloadable at their respective sites (Redhat and Centos). We will go ahead and setup Swap space, Memory, Semaphores, File Handles and Hangcheck-timer.
Kewl DB2 for z/OS V8 Feature Part 3: VSAM Control Interval (CI) Support
(Willie Favero) Do you run into small problems when defining a DB2 object with an 8K, 16K, or 32K page size? Do you wish you could use VSAM striping and/or concurrent copy but can’t because of the page size you have chosen? DB2 even gives you an SQLCODE -905 with a reason code 00C20111 if you try to