>>I guess we read the question completely differently. He posted an SP and I assumed we want to be able to handle NULL (empty) parameters in this SP.
>>
>>We can generate dynamic SQL in the code, of course, but then we should take measures against SQL injection attacks.
>
>
>You know.. .I'm done with this thread. I'll leave it up to you to solve his problems since you appear to have all the answers.... Have fun...
Very strange reply of yours. Anyway, let's Kevin clarify what exactly did he want to achieve.
If it's not broken, fix it until it is.
My Blog