http://live.pirillo.com/ – What is a good software firewall to use on Windows?
Windows comes with its own software firewall, and while it’s decent it doesn’t offer the best protection out there.
Some people recommend Norton, while others swear by Zonealarm. What do you use?
Duration : 0:6:1
In terms of risk, SQL injection is right up there at the top with problems like buffer overflows. I recently had an argument with a large database software vendor about this. They rated SQL injection problems as a low risk issue and were greatly more concerned with buffer overflows in their RDBMS offering. I pointed
out to them that to exploit a buffer overflow in the database server one must first get past the organization’s firewall. A nice easy way of doing this is through SQL injection: the firewall must allow inbound connections to the web server from the Internet so customers can access the web application; and if the
application is vulnerable to SQL injection then the attacker can get access to the database and exploit the buffer overflow vulnerability. But here’s the kicker – why would an attacker bother exploiting the buffer
overflow vulnerability if they can arbitrarily gain access to the data in the database anyway? Since this discussion, I’m glad to report that the large database software vendor has since "upgraded" the status of
SQL injection vulnerabilities and give them the respect they’re due.
It is a programing language for DB2.
Select * from tablename
( you get the result of all columns back )
( you can also do: insert , update and delete )