Mike Yearwood
Toronto, Ontario, Canada
General information
Category:
Visual FoxPro and .NET
Environment versions
Network:
Windows 2003 Server
>Mike,
>
>Dynamic SQL isn't any more susceptible to Injection attacks than Store Procedures. You can call a stored procedures with literal parameters just as easily as you can a dynamic SQL statement <g>...
>
>There's no perf advantage to store procs in SQL 2000 or 2005, but there's more administrative control and some people like to centralize the data logic on the server.
>
>I love to have people who are hell bent on stored procedures try to justify it and come up with all sorts of non-issues <g>...
>
>+++ Rick ---
That's for sure!
Previous
Reply
View the map of this thread
View the map of this thread starting from this message only
View all messages of this thread
View all messages of this thread starting from this message only