From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,FREEMAIL_FROM autolearn=ham autolearn_force=no version=3.4.4 X-Google-Thread: 103376,c9d5fc258548b22a X-Google-NewGroupId: yes X-Google-Attributes: gida07f3367d7,domainid0,public,usenet X-Google-Language: ENGLISH,ASCII-7-bit Path: g2news2.google.com!news1.google.com!npeer02.iad.highwinds-media.com!news.highwinds-media.com!feed-me.highwinds-media.com!nx02.iad01.newshosting.com!newshosting.com!novia!transit3.readnews.com!news-out.readnews.com!postnews7.readnews.com!not-for-mail Date: Wed, 02 Mar 2011 11:03:54 -0500 From: Hyman Rosen User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.13) Gecko/20101207 Thunderbird/3.1.7 MIME-Version: 1.0 Newsgroups: comp.lang.ada Subject: Re: How do I write directly to a memory address? References: <67063a5b-f588-45ea-bf22-ca4ba0196ee6@l11g2000yqb.googlegroups.com> <31c357bd-c8dc-4583-a454-86d9c579e5f4@m13g2000yqb.googlegroups.com> <05a3673e-fb97-449c-94ed-1139eb085c32@x1g2000yqb.googlegroups.com> <4d4c232a$0$28967$882e7ee2@usenet-news.net> <4D4D6506.50909@obry.net> <4d50095f$0$22393$882e7ee2@usenet-news.net> <4d6d56c4$0$11509$882e7ee2@usenet-news.net> <4D6D6A90.2090108@obry.net> <4d6d6e60$0$11509$882e7ee2@usenet-news.net> <4d6e53c1$0$21954$882e7ee2@usenet-news.net> <94766542-d6cf-4191-bd28-2f8ba07a67db@e9g2000vbk.googlegroups.com> <4d6e5b6f$0$21954$882e7ee2@usenet-news.net> In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Message-ID: <4d6e6a7b$0$21954$882e7ee2@usenet-news.net> NNTP-Posting-Host: e65c0094.usenet-news.net X-Trace: DXC=12LHa8d]^hTaQQ2eQFZ3T]GPM]gmX0AG3X_jUoEREK78_1jBkVjKk:Lk^BNacR12TN^Bg7n[3hNl4]a6JoYoLCIT2AA@e X-Complaints-To: abuse@usenet-news.net Xref: g2news2.google.com comp.lang.ada:18702 Date: 2011-03-02T11:03:54-05:00 List-Id: On 3/2/2011 10:49 AM, Ludovic Brenta wrote: > If you insist: http://xkcd.com/327/ The little Bobby Tables bug (SQL injection) arises when programmers construct SQL statements through string concatenation without sanitizing user inputs. This is not the fault of SQL. Instead, using parameters with prepared SQL statements avoids the problem, and it was in this case that GNATColl erroneously added quotes to strings. > Also, SQL lacks integer types with range checking like Ada has had > since 1979. That's false. See, for example, You can do create table joe ( harry int not null check ( harry between 42 and 84 ) ) and then you will not be able to insert values into the table that are not in the permitted range.