Comments on: Python Recipe: Connect to a MySQL database, execute a query, print the results. http://www.palewire.com/2008/04/26/python-recipe-connect-to-mysql-database-execute-a-query-print-the-results/ life it ain't real funky, 'less it's got that pop... Wed, 07 Jan 2009 08:15:44 +0000 http://wordpress.org/?v=2.6 By: palewire http://www.palewire.com/2008/04/26/python-recipe-connect-to-mysql-database-execute-a-query-print-the-results/#comment-76639 palewire Tue, 29 Apr 2008 06:01:01 +0000 http://www.palewire.com/?p=112#comment-76639 Well, in the case of this tutorial, the script should never be accessible over the Internet -- it's just sitting on my Documents folder -- so it shouldn't be a very high security risk. But I get what you're driving at. If you want to learn more about SQL injection, there are a ton of great resources on the web that both <a href="http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/" rel="nofollow">explain the common methods</a> and show <a href="http://sqlmap.sourceforge.net/" rel="nofollow">some remedies</a>. Well, in the case of this tutorial, the script should never be accessible over the Internet — it’s just sitting on my Documents folder — so it shouldn’t be a very high security risk. But I get what you’re driving at. If you want to learn more about SQL injection, there are a ton of great resources on the web that both explain the common methods and show some remedies.

]]> By: tommygun http://www.palewire.com/2008/04/26/python-recipe-connect-to-mysql-database-execute-a-query-print-the-results/#comment-76485 tommygun Mon, 28 Apr 2008 18:21:38 +0000 http://www.palewire.com/?p=112#comment-76485 Dear Dr. Ben. A little off-topic, but are there simple things one can do to make MySQL queries more secure? Or is this a huge complicated issue? Specifically, are there little simple things you do each time to prevent situations like this: Massive Attack: Half A Million Microsoft-Powered Sites Hit With SQL Injection http://blog.wired.com/monkeybites/2008/04/microsoft-datab.html Signed, Paranoid in Peoria Dear Dr. Ben. A little off-topic, but are there simple things one can do to make MySQL queries more secure? Or is this a huge complicated issue? Specifically, are there little simple things you do each time to prevent situations like this:

Massive Attack: Half A Million Microsoft-Powered Sites Hit With SQL Injection
http://blog.wired.com/monkeybites/2008/04/microsoft-datab.html

Signed,
Paranoid in Peoria

]]>