Come evitare iniezioni SQL lato DB in SQLServer, Oracle, MySQL

 Come evitare iniezione SQL: lato SQL Server (SP_EXECUTESQL) In generale va evitato nel modo più assoluto la scrittura di query sql diamiche. Va evitato cioè  l’uso lato SQL Server di sp_executesql e EXEC Di seguito mostriamo come trasformare una query “dinamica” in una “statica”   [sql]CREATE PROCEDURE search_orders @custid nchar(5) = NULL, @shipname nvarchar(40) = …

Come evitare iniezioni SQL lato DB in SQLServer, Oracle, MySQL Read More »

Mailing List Options

If you need to set up a mailing list, I will suggest two choices: An open source email campaign manager, with an hosted option The Free account has an unlimited number of contacts,  but a 300 message per month limit. Commercial hosted solution. Very nice site, with a strong appeal. Free Up to …

Mailing List Options Read More »


PHing Is Not GNU make; it’s a project build system based on Apache Ant. You can do anything with it that you could do with a traditional build system like GNU make, and its use of simple XML build files and extensible PHP “task” classes make it an easy-to-use and highly flexible build framework. Features …

Phing Read More »

The One Minute Blog Installation

At we have no time. So we was very happy to find out a blogging platform which can be configured, tuned and rolled out in short time. If you are watching for such thing, you are welcome. Let’start!

Dynamic languages troubles

I have read and I think it is very danger way of exposing concepts.

In the article pointed out, the quite dead Chandler project is compared to the multi-billion Eclipse project. And then a too easy analysis is done against dynamic languages, where Java is the absolute winner.

I will try to fix some of the things said there, and to add also my two cents here :)