| From: | "Jim C(dot) Nasby" <jnasby(at)pervasive(dot)com> |
|---|---|
| To: | Yonatan Ben-Nes <da(at)canaan(dot)co(dot)il>, pgsql-general(at)postgresql(dot)org |
| Subject: | Re: SQL injection |
| Date: | 2005-11-01 22:11:10 |
| Message-ID: | 20051101221110.GL20349@pervasive.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
On Tue, Nov 01, 2005 at 11:00:26PM +0100, Martijn van Oosterhout wrote:
> It's a pity the protocol doesn't have a single shot prepare/bind
> command which would allow you to send the values out-of-line (no
> quoting issues) but still provide them at the planning/optimising stage
> to get good plans. Ah well, can't have everything.
Is there any reason that couldn't be added? Sounds like it might make a
good newbie TODO...
--
Jim C. Nasby, Sr. Engineering Consultant jnasby(at)pervasive(dot)com
Pervasive Software http://pervasive.com work: 512-231-6117
vcard: http://jim.nasby.net/pervasive.vcf cell: 512-569-9461
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Jim C. Nasby | 2005-11-01 22:12:33 | Re: PostgreSQL on 64-bit operating systems |
| Previous Message | Jim C. Nasby | 2005-11-01 22:07:30 | Re: SQL injection |