navigation
a webmaster learning community
     Home    Register     Search      Help      Login    
FrontPage Alternative
Sponsors

Shopping Cart Software
Ecommerce software integrated into Frontpage, Dreamweaver and Golive templates. No monthly fees and available in ASP and PHP versions.

Website Templates
We also have a wide selection of Dreamweaver, Expression Web and Frontpage templates as well as webmaster tools and CSS layouts.

Frontpage website templates
Creative Website Templates for FrontPage, Dreamweaver, Flash, SwishMax

Search Forums
 

Advanced search
Recent Posts

 Todays Posts
 Most Active posts
 Posts since last visit
 My Recent Posts
 Mark posts read

 

Access and SQL Injection

 
View related threads: (in this forum | in all forums)

Logged in as: Guest
Users viewing this topic: none
Printable Version 

All Forums >> Web Development >> ASP and Database >> Access and SQL Injection 		Page: [1]
 
jeepless

 

Posts: 226
Joined: 12/20/2003
From: Smack in the middle of USA
Status: offline

  		Access and SQL Injection - 12/29/2006 9:35:33   
Are Access databases susceptible to SQL injection techniques like they are for SQL or MySQL databases? I've been reading up on common injection techniques, but most seem to apply only to pure SQL databases. I use quite a few Access databases on my sites and have always wondered if they're susceptible, too. If they are, which techniques would be applicable for Access? Does using the FrontPage DRW make any difference or would it only apply to pure ASP solutions?


_____________________________

The problem with designing a system that's foolproof is that designers underestimate complete fools.
rdouglass

 

Posts: 9280
From: Biddeford, ME USA
Status: offline

  		RE: Access and SQL Injection - 12/29/2006 9:42:46   
Not as much but still suceptible somewhat. I make it a common practice to build a function into all my projects that just 'processes' form fields. It can be as simple as: 

<%
Function StripQuote(TextIn)
	TextIn = Replace(TextIn,"'","''")
	StripQuote = TextIn
End Function


myVariable = StripQuote(Request.form("myTextField"))
%>


but it is a good habit to have.

_____________________________

Don't take you're eye off your final destination.

ASP Checkbox Function Tutorial.

(in reply to jeepless)
BeTheBall

 

Posts: 6381
Joined: 6/21/2002
From: West Point Utah USA
Status: offline

  		RE: Access and SQL Injection - 12/29/2006 12:02:48   
Adding to what Roger said, I believe the DRW has a similar function built-in and is quite safe.

_____________________________

Duane

Some people are like Slinkies . . . Not really good for anything . . . . . But they still bring a smile to your face when you push them down a flight of stairs.

(in reply to rdouglass)
Page:   [1]

All Forums >> Web Development >> ASP and Database >> Access and SQL Injection 		Page: [1]
Jump to: 1





New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts


Back to top

  Microsoft Corporation in no way endorses or is affiliated with "OutFront."
  OutFront is published and edited by Thomas Brunt.
  440 Great Circle Dr., St. Matthews, SC 29135.
  © 2008 All Rights Reserved
  Click here to view our privacy statement.