ibatis-user-java mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Zoran Avtarovski <zo...@sparecreative.com>
Subject Re: OT: Preventing sql injection attack
Date Fri, 22 Feb 2008 13:41:00 GMT
Good point. I might have a look at the Prepared statement source and use
that as a guide for implementing a utlity class to cover my ass.


>> I haven't implemented it yet, but I can't see a reason why it wouldn't
> work.
> I can not see either, but, to speed up such searches one usually indexes
> search column. While index will work well for Column LIKE 'bla%', I doubt it
> will be of any use with  ANY_FUNCTION(Column...)...

View raw message