Level Extreme platform
Subscription
Corporate profile
Products & Services
Support
Legal
Français
How to use dates in WHERE in SQL Server
Message
From
10/06/2008 17:14:22
Cetin Basoz
Engineerica Inc.
Izmir, Turkey
 
 
To
10/06/2008 17:11:56
Dmitry Litvak (Online)
Massachusetts, United States
General information
Forum:
Microsoft SQL Server
Category:
Other
Title:
Re: How to use dates in WHERE in SQL Server
Miscellaneous
Thread ID:
01322704
Message ID:
01322942
Views:
27
>
>Thank you for the explanation. Do I understand correctly that when you use the "?parameter" approach you are not opening database to the public? And when you are sending a SQL string to be executed on the server, you are?

Yes, with parameter approach your calls are immune to attack. With string building approach you let people to be able to do anything that connected user could do (like querying sensitive data, deleting tables, ...).
Cetin
Çetin Basöz

The way to Go
Flutter - For mobile, web and desktop.
World's most advanced open source relational database.
.Net for foxheads - Blog (main)
FoxSharp - Blog (mirror)
Welcome to FoxyClasses

LinqPad - C#,VB,F#,SQL,eSQL ... scratchpad
Previous
Next
Reply
Map
View

Click here to load this message in the networking platform