Hackers and malicious database administrators use SQL injection to obtain sensitive information and data in the database, delete or manipulate the database or cause denial of service (DoS) – this potentially locks the rows of the database. To remain vigilant and safe from SQL injection attacks, we compile this article presenting tips to protect your data from SQL injection attacks. You can apply whichever suits your situation and need.
Use of stored procedures
If possible allow applications to network with database only via stored procedures. In that manner, the database account that the application uses will only require authorization for executing the stored procedures, without requiring permissions for entrance into the underlying tables. Albeit the application code is vulnerable …Read More →