Re: [Vala] Escape string for use in sqlite

From: Shawn Ferris <shawn ferris gmail com>
To: Vala List <vala-list gnome org>
Subject: Re: [Vala] Escape string for use in sqlite
Date: Fri, 9 Mar 2012 07:46:08 -0700

On Tue, Mar 6, 2012 at 12:33 PM, Luca Bruno <lethalman88 gmail com> wrote:

On Tue, Mar 6, 2012 at 8:30 PM, Rodrigo Herefeld <rodrigo herefeld gmail com

wrote:


When you bind a string parameter it will be escaped.


I would add that database engines are usually better at optimizing SQL
with bind variables, as well, binds help prevent SQL Injection
attacks. The latter is the best reason of all, to use them, the other
two you get for free. :D

Shawn

Follow-Ups:
- Re: [Vala] Escape string for use in sqlite
  - From: Daniel Espinosa

References:
- [Vala] Escape string for use in sqlite
  - From: Rodrigo Herefeld
- Re: [Vala] Escape string for use in sqlite
  - From: Luca Bruno
- Re: [Vala] Escape string for use in sqlite
  - From: Luca Bruno

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]