Viewing 9 posts - 1 through 9 (of 9 total)
April 4, 2008 at 11:26 am
It should be noted that the “@” symbol is a syntax flag for parameters in the SQL CommandString, and is not part of the actual Parameter Name. The .Add methods...
November 12, 2007 at 10:18 am
One other thing to note, Parameters.Add() has been deprecated in 2.0 and replaced with Parameters.AddWithValue();
Not quite true. The specific overload of Parameters.Add(paramName As String, value As Object)...
November 9, 2007 at 12:13 pm
Even with parameterized queries, new SQL Injection techniques can still work. My point, however, was that in general one should never rely on client-side validation alone. This includes even...
December 15, 2006 at 1:12 pm
Oooooo-kaaay! I had just written up a long reply here with lots of important information, and went to HTML view to edit some of the generated code (did you...
December 15, 2006 at 11:06 am
I think you can still use isql or osql for quick queries. If you have Office Pro or Developer, you can use Access (preferrably 2003) Projects (.adp files, not .mdb)...
July 21, 2006 at 9:18 am
How does one manipulate user permissions for SQL2000 in SSMS? In EM, I could right-click on an object and edit what the groups could do, or right-click on a group...
June 27, 2006 at 9:24 pm
Read it again: I didn’t ask you to guess the sequence (which is easy enough). I asked you to use SQL to come up with a solution to it —...
April 28, 2006 at 5:18 pm
You keep using that word. I do not think it means what you think it means.
Okay, let’s see you SQL gurus use...
April 28, 2006 at 12:28 pm