Could you pls let me know that when we use the parameters how the sql server ?s able to keep all the datas on the str?ng type?and also how ?t can be prov?de that secur?ty on system(how ?t ?gnore to do sql ?nject?on...).
I did not get your point with the data on the string type ? SQL Injection is not automatically audited in SQL Server you will have to either to secure coding (preferable) or do not use dynamic sql at all.Jens K. Suessmeyer.
http://www.sqlserver2005.de
No comments:
Post a Comment