Level Extreme platform
Subscription
Corporate profile
Products & Services
Support
Legal
Français
Stored Procedure always faster?
Message
From
28/07/2006 16:34:41
Dragan Nedeljkovich (Online)
Now officially retired
Zrenjanin, Serbia
 
 
To
28/07/2006 16:09:09
Mike Yearwood
Toronto, Ontario, Canada
General information
Forum:
Visual FoxPro
Category:
Client/server
Title:
Re: Stored Procedure always faster?
Environment versions
Database:
MS SQL Server
Miscellaneous
Thread ID:
01140442
Message ID:
01141377
Views:
47
>>Then we better do this ourselves - not only that VFP has to pass the parameters in some acceptable form (I assume there must be some conversion, at least for some data types), but I assume ODBC has to run some conversion of them into strings - which I somehow can't see as the fastest software in the world. I remember the earlier versions of ODBC drivers weren't exactly fast.
>
>If you don't pass them as parameters you are begging for SQL Injection attack.

What I mean is
*-- TEXT BLOCK BEGIN
TEXT TO lcSql NOSHOW TEXTMERGE
DECLARE @var1 int
SELECT @var1=<<value1>>
SELECT * FROM ... vere field1=@var1
ENDTEXT
*-- TEXT BLOCK END
sqlexec(lcSql, ...)
IOW, we can do the same, directly. I think that's what df had in mind, and what came to my mind after our last chat about this.
back to same old
the first online autobiography, unfinished by design
What, me reckless? I'm full of recks!
Balkans, eh? Count them.
Previous
Reply
Map
View

Click here to load this message in the networking platform