Talk in English - UK at ZendCon 2011
View Slides: http://www.slideshare.net/billkarwin/sql-injection-myths-and-fallacies
Short URL: https://joind.in/talk/7624b
(QR-Code (opens in new window))
SQL Injection Myths and Fallacies
Comments are closed.
Very detailed & well thought out discussion. Bill spoke very competently, especially in answering questions from the audience. Definitely a talk worth attending.
Learned two new things: the Elvis operator ?: and the use of whitelist mappings to help prevent injection of arbitrary strings.
Very rare to find a DBA who also has an extensive web-based programming background like Bill.
Bill Karwin knocked it out of the park like always. Great code examples and format for his presentation.
Great talk with good examples. Not only examples of what was wrong but what to do to fix it.