This is the old 'SQL Injection' bug. You can avoid the possibility by doing a CLng(ID) in your VB code. Anything that is not numeric will fail the...

When we have this situation, (same result set, multiple selection criteria)

we do something like this

create proc myProc (@CustId int=NULL, @MgrID int = NULL

as

declare @MyCust int, @myMrgint

set @MyCust = coalease(@CustID, 0)

set...

I worked on a health care claims systems where we had literally hundreds of thousands of claims daily. We did exactly what you are describing. We took it...

YES! IMO, this exam is really more concerned about whether or not you are awake than if you know SQL Server. There are several questions that I considered...

As part of your cleanup , y ou should delete the temp table at the end of your stored proc. It may not seem logical but the results have...

INSERT and UPDATE triggers don't fire at the same time. YOu either have an INSERT or you have and UPDATE. What you might be seeing is that either...

SQL server creates the result sets for views in storage as needed. Temporary tables are created on disk in tempdb unless you have the "tempdb in RAM" option specified and...

If your column is indexed, SQL Server is able to pull out the info it needs from there and not go to the table. that's why this query doesn't...

Sounds like you're trying to create an "intelligent key." In data modeling this is discouraged. Your key values should be something that is really unique and not "made...

A common problem. It's too bad table-valued user-defined functions can't be created that return the results of store procedure.

As for parametering the ORDER By clause, there is a neat...

quote:

---

I have a 17 million record table with 12 integer fields that I need to group by and 25 other fields that...

The best form of error handling is prevention. Short of that, you can check @@ERROR and take action based on the error code that is raised...

You can assign the user the db_ddladmin role which would let him run any DDL statement to create views, tables, procs, etc. but not actually see any of the data...

The accepted format is to use a stored procedure and pass it the parameters you need. Generating SQL statements from user-supplied input is inefficient and risky (from a security...

Just like Windows XP has its roots in Windows 95. Products have a way of digressing. Consider that SYBASE and Microsoft haven't collaborated for 10+ years on a...