Viewing 15 posts - 1,921 through 1,935 (of 3,011 total)
Re-designing the database to overcome network and application issues is usually a very bad idea.
It would be better to re-write the application to work as a n-tier application instead of...
March 19, 2009 at 8:36 am
It isn't always easy to convince even experienced developers that SQL Injection can be a problem. Look at this current thread.
Avoiding injection on stored procedure
March 18, 2009 at 11:15 pm
You really seem to be missing the point, and your posts didn't address the specific example I posted.
I just ran this script creating the table, loading some rows into it,...
March 18, 2009 at 10:41 pm
The script on this link works with SQL Server 7.0, 2000, and 2005 (and probably 2008) and has a number of queries to analyze the info various ways:
Total by Database...
March 18, 2009 at 9:46 pm
Nothing will be simpler than backup and restore, especially for large databases.
It can be scripted, and scheduled in a job.
March 18, 2009 at 9:39 pm
I didn't test every possible method, so who knows if something better will turn up.
Don't speak too soon for the wheel's still in spin and there's no tellin' who that...
March 18, 2009 at 9:34 pm
The only ways I can think of are:
Grant them the permissions on the source database.
Make them sysadmin on the server where the read-only database is located.
Neither is a really a...
March 18, 2009 at 8:35 pm
If anyone is interested in the most efficient way to do it, take a look at performance tests on this this thread:
http://www.sqlteam.com/forums/topic.asp?TOPIC_ID=122003
And no, the most effiecient wasn't the solution I...
March 18, 2009 at 8:26 pm
bitbucket (3/18/2009)
Michael Valentine Jones
Since the title of this thread is “Avoiding injection on stored procedure”, have you considered what would happen if they passed the following as parameters:
[Execute USPDeleteAnswers @Id...
March 18, 2009 at 2:07 pm
Consider this variation of B. It allows you the flexibility to use a QuestionGroup in multiple Surveys without having to re-enter the questions for each Survey.
TableKeys
Survey
PK = SurveyID
QuestionGroup
PK =...
March 18, 2009 at 1:32 pm
It doesn't seem to handle tab indents very well. The indents below are all over the place, even though they are all a single tab character.
I think it would...
March 18, 2009 at 1:07 pm
homebrew01 (3/18/2009)
How about deleting the database, since the restore will delete it anyway. Then no one can reconnect before the restore begins.
You still have to get the users out of...
March 18, 2009 at 12:33 pm
bitbucket (3/18/2009)
CREATE PROCEDURE USPDeleteAnswers
@Id varchar(50),
@QId varchar(100)
AS
DECLARE @sql nvarchar(255)
SET @sql = 'DELETE FROM tblUserAnswer where Id = ''' + @Id + ''' and QuestionId in (' + ...
March 18, 2009 at 12:29 pm
select [Nine Digits] = right(1000000000+num,9)
from
( --Test Data
select num = 456 union all
select num = 3456 union all
select num = 123456
) a
Results:
Nine Digits
-----------
000000456
000003456
000123456
March 18, 2009 at 11:55 am
Viewing 15 posts - 1,921 through 1,935 (of 3,011 total)