Re: string:sub

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: Re: string:sub
From: Florian Weimer <fw@...>
Date: Wed, 10 Mar 2010 20:37:45 +0100

* Jorge:

> That's language level. On your application level, you are responsible
> for validating data. An example is SQL injection: no mather how secure
> you database is, if your app don't validate input, breaches will occur.

SQL injection is not an input validation problem.  And if your
database provides an embedded SQL compiler, it's rather
straightforward to check that no SQL injection issues exist in your
application.

Follow-Ups:
- Re: string:sub, Jorge

References:
- string:sub, David Burgess
- Re: string:sub, Philippe Lhoste
- Re: string:sub, David Burgess
- Re: string:sub, Erik Lindroos
- Re: string:sub, David Burgess
- Re: string:sub, Enrico Colombini
- Re: string:sub, spir
- Re: string:sub, Scott Vokes
- Re: string:sub, joao lobato
- Re: string:sub, Philippe Lhoste
- Re[2]: string:sub, Bulat Ziganshin
- Re: Re[2]: string:sub, Alex Davies
- Re[4]: string:sub, Bulat Ziganshin
- Re: Re[4]: string:sub, Jorge

Prev by Date: Re: LuaJIT compilation problem on FreeBSD
Next by Date: Re: string:sub
Previous by thread: Re: Re[4]: string:sub
Next by thread: Re: string:sub
Index(es):
- Date
- Thread