(Chris Anley) This document discusses in detail the common ‘SQL injection’ technique, as it applies to the popular Microsoft Internet Information Server/Active Server Pages/SQL Server platform. It discusses the various ways in which SQL can be ‘injected’ into the application and addresses some o
Other News
Defining Operators in VB .NET 2005
(Bill Horst) This article provides an introduction to defining operators in VB .NET 2005. This new language feature allows VB .NET users to specify operator methods on their own classes and structures. For example, an operator could be written to multiply together two Classes.
What You Need to Know About Web Controls
(Deborah Kurata) One of the key tenets of .NET is that it makes developers more productive. And this is basically true—it is easier to build applications, including Web applications. You can build a complex Web page with its associated business object and stored procedures in less than four hour
MySQL 5.0 Stars at Users Conference
(Lisa Vaas) Oh, if only the whole despicable idea of software patents would crumble as quickly as the fudge cake that MySQL users scarfed down at the third users conference (and 10-year birthday bash) for the database here.
Oracle Security: A Definition in Plain English, Part 3
(Lewis R Cunningham) Regardless of any regulations you are required to meet you can implement a security and audit scheme that will cover you for most, if not all, eventualities. Having good security and auditability should be desirable regardless of regulations. It protects your business.
XML Matters: Program with SVG
(David Mertz) Scalable Vector Graphics (SVG) is an XML format that describes scale-independent graphics, with good support in free software and commercial tools. In this installment, David introduces scripting and animation with SVG, and touches on manipulating SVG through DOM. Because SVG is XM
Introducing Microsoft Reporting Services, Part 2
(Teo Lachev) Report processing encompasses all activities performed by the Report Server to generate a report. To understand how the Report Server processes a report, let’s see what happens when the report is requested on demand.
The Globalization of Language in Oracle – And Case-Insensitivity
(James Koopmann) Up to now in this series on globalization, we have discussed how to set particular environment variables or database parameters. This was done to get our client machines configured in such a way that they truly represented their true locale and for the proper translation of char
SQL Server 2005: Resources for learning
(Adam Machanic) If you’ve spent any time on Microsoft-centric Web sites in the last six months, you’ve probably heard about the new version of SQL Server scheduled to be released later this year. Yet with all the hype, promises and early reviews, it is sometimes hard to form a solid idea of what exa
ASP.NET 2.0 Internals
(Jayesh Patel, Bryan Acker and Robert McGovern) While 100 percent backward compatible with ASP.NET 1.1, ASP.NET 2.0 brings a number of internal changes to ASP.NET. These include changes to the code model, compilation, page lifecycle, and more. This article outlines those changes.