Plateforme Level Extreme
Abonnement
Profil corporatif
Produits & Services
Support
Légal
English
Stored Procedure always faster?
Message
De
28/07/2006 16:34:41
Dragan Nedeljkovich (En ligne)
Now officially retired
Zrenjanin, Serbia
 
 
À
28/07/2006 16:09:09
Mike Yearwood
Toronto, Ontario, Canada
Information générale
Forum:
Visual FoxPro
Catégorie:
Client/serveur
Titre:
Re: Stored Procedure always faster?
Versions des environnements
Database:
MS SQL Server
Divers
Thread ID:
01140442
Message ID:
01141377
Vues:
42
>>Then we better do this ourselves - not only that VFP has to pass the parameters in some acceptable form (I assume there must be some conversion, at least for some data types), but I assume ODBC has to run some conversion of them into strings - which I somehow can't see as the fastest software in the world. I remember the earlier versions of ODBC drivers weren't exactly fast.
>
>If you don't pass them as parameters you are begging for SQL Injection attack.

What I mean is
*-- TEXT BLOCK BEGIN
TEXT TO lcSql NOSHOW TEXTMERGE
DECLARE @var1 int
SELECT @var1=<<value1>>
SELECT * FROM ... vere field1=@var1
ENDTEXT
*-- TEXT BLOCK END
sqlexec(lcSql, ...)
IOW, we can do the same, directly. I think that's what df had in mind, and what came to my mind after our last chat about this.
back to same old
the first online autobiography, unfinished by design
What, me reckless? I'm full of recks!
Balkans, eh? Count them.
Précédent
Répondre
Fil
Voir

Click here to load this message in the networking platform