SQL Injection isn't special code. It consists of regular, valid T-SQL that is unexpected by the application. Steve Jones notes that using the principle of least privilege can help to limit the damage from SQL Injection if the application fails to properly check input.
2015-12-28 (first published: 2011-04-12)
601 reads
Steve Jones talks about the possibility of SQL Injection, or other security issues from malformed input, affecting our lives in new and annoying ways.
2011-04-11
586 reads
Quite a few utility companies and energy producers have ha data breeches in the last year, yet most of them don't have good tools to detect the intrusions or the support of executive management. Steve Jones talks about this being a problem in many companies.
2011-04-11
99 reads
This Friday Steve Jones asks what you would like to see in Standard Edition. Is there one feature that would make a big difference to you?
2011-04-08
127 reads
If the future of out IT works involves more ad hoc, swarming project teams, are you prepared? Steve Jones talks about social networking being something you might consider as a way to build some skills to work with others in a less formal way.
2011-04-07
109 reads
We never know enough ourselves to be sure that we have completely thought through all the scenarios or holes in our logic. This is why it makes sense for us to have a group that spends time looking for problems.
2011-04-06
196 reads
Today Steve Jones asks for your ideas on Microsoft's Connect. It's a good way to submit bugs and suggestions, but it seems to suffer from a scale problem. What do you think would help?
2011-04-05
159 reads
Any DBA who has been bitten by these subtle data integrity issues, or reports that erratically produce the wrong results, will know how much careful testing is involved in mitigating them.
2011-04-04
274 reads
What value can you place on data? It can be hard to determine, especially when so many sites on the Internet want data to be free. However the New York Times is going to a subscription model, with the idea that there is some value to their data and people will pay for it.
2011-04-04
105 reads
Today Steve Jones talks about changes that are coming to SQLServerCentral.
2011-04-01
201 reads
Every organization I talk to has the same problem dressed up in different clothes....
By DataOnWheels
I am delighted to host this month’s T-SQL Tuesday invitation. If you are new...
By alevyinroc
Ten years (and a couple jobs) ago, I wrote about naming default constraints to...
Comments posted to this topic are about the item The day-to-day pressures of a...
Hello all, I’m looking for advice on how to derive a daily snapshot table...
We need to replace our Windows server running SQL 2017. Any reason not to...
I have some data in a table that looks like this:
BeerID BeerName brewer beerdescription 1 Becks Interbrew Beck's is a German-style pilsner beer 2 Fat Tire New Belgium Toasty malt, gentle sweetness, flash of fresh hop bitterness. 3 Mac n Jacks Mac & Jack's Brewery This beer erupts with a floral, hoppy taste 4 Alaskan Amber Alaskan Brewing Alaskan Brewing Amber Ale is an "alt" style beer 8 Kirin Kirin Brewing Kirin Ichiban is a Lager-type beerIf I run this, what is returned?
select t1.[key]
from openjson((select t.* FROM Beer AS t for json path)) t1 See possible answers