Wikio - SQL

Coda updated with fully integrated source code (MAC News Network)

Wed, 27 Aug 2008 16:20:00 GMT

Panic this week update to Coda, its web development application. According to the company, Coda is designed to bring all the functions of web page creation into a single window. Users have the ability to edit text, transfer files, preview pages and adjust SQL all -- and more -- in one interface. The developers goal was to take a complicated workflow of web development and integrate it into one int...

Source : MAC News Network (subscribe)

Explore : Apple, Computers, Personal Computers

Microsoft Source Code Analyzer for SQL Injection (CTP July 2008) (MSDN Blogs)

Fri, 18 Jul 2008 23:18:03 GMT

http://www.microsoft.com/downloads/details.aspx?FamilyID=58A7C46E-A599-4FCB-9AB4-A4334146B6BA&displaylang=en

Source : MSDN Blogs (subscribe)

Explore : MSDN

MSCASI July 2008 CTP has three minor changes (Ars Technica)

Mon, 14 Jul 2008 16:18:50 GMT

Microsoft has released the Microsoft Source Code Analyzer for SQL Injection (MSCASI) July 2008 CTP. The changelog is a small one but it's still good to see Microsoft take the time to update this tool. Read More...

Source : Ars Technica (subscribe)

Explore : Technology

Microsoft ® Source Code Analyzer for SQL Injection – July 2008 CTP (MSDN Blogs)

Sat, 12 Jul 2008 00:41:00 GMT

Today we have released an updated Community Technology Preview of Microsoft Source Code Analyzer for SQL Injection. We made the following improvements based on community feedback: Included a GUI to view warnings generated by the tool. Downgraded the requirements to Microsoft .NET Framework 2.0 from 3.0. Improved the ASP parser and analysis engine in various ways. The updated tool can...

Source : MSDN Blogs (subscribe)

Explore : MSDN

LINQ to SQL : Missing Manual are at MSDN (Wriju's BLOG)

Thu, 03 Jul 2008 22:04:00 GMT

ADO.NET and LINQ to SQL Describes the relationship of ADO.NET and LINQ to SQL. Analyzing LINQ to SQL Source Code Describes how to analyze LINQ to SQL mapping by generating and viewing source code from the Northwind sample database. Customizing Insert,...( read more )

Source : Wriju's BLOG (subscribe)

Getting started with Microsoft ® Source Code Analyzer for SQL Injection (MSDN Blogs)

Fri, 27 Jun 2008 05:05:00 GMT

Two days ago, we released Microsoft ® Source Code Analyzer for SQL Injection, June 2008 CTP which can analyze SQL injection vulnerabilities in Active Server Pages (ASP) code. In this blog, we will describe simple steps to help you start using the tool quickly. 1. Download the tool from http://www.microsoft.com/downloads/details.aspx?FamilyId=58A7C46E-A599-4FCB-9AB4-A4334146B6BA...

Source : MSDN Blogs (subscribe)

Explore : MSDN

Microsoft Source Code Analyzer for SQL Injection (ActiveWin.com Headlines)

Wed, 25 Jun 2008 21:06:16 GMT

Community Technology Preview (June 2008) Microsoft Source Code Analyzer for SQL Injection is a static code analysis tool for finding SQL Injection vulnerabilities in ASP code. Customers can run the tool on their ASP source code to help identify code paths that are vulnerable to SQL Injection attacks.

Source : ActiveWin.com Headlines (subscribe)

Microsoft Source Code Analyzer (MSDN Blogs)

Wed, 25 Jun 2008 19:35:00 GMT

My team recently had discussions with our security on ways we can help developers deliver more secure code on the web. One outcome of that is the Microsoft Source Code Analyzer. This tool is specifically designed to mitigate risk from sites that are vulnerable to SQL Injection Attacks. This type of attack can particularly problematic for free code downloaded from the internet....

Source : MSDN Blogs (subscribe)

Explore : MSDN

SQL Injection Detection and Defense (Website Magazine)

Wed, 25 Jun 2008 16:00:00 GMT

Microsoft has released tools to help website developers in their defense against SQL injection on sites that use ASP and ASP.Net technologies. The tools include URLScan 3.0 (which is in beta release) and Microsoft Source Code Analyzer for SQL Injection (MSCASI), available as a Community Technology Preview. Hewlett Packard has also developed a free scanner which can identify whether sites...

Source : Website Magazine (subscribe)

Testing programming language implementations (Planet Intertwingly)

Wed, 18 Jun 2008 13:23:00 GMT

While writing the post yesterday about testing regular expressions, I realized that this problem is not really specific to regular expressions. I got a very good comment noting that testing any place that uses some kind of DSL is definitely prudent. SQL is another example. But these examples are both about actually testing the usage of them, and the problem becomes that you have two languages,...

Source : Planet Intertwingly (subscribe)

SQL Ledger Accounting With Source Code (Article Archive)

Mon, 02 Jun 2008 03:03:20 GMT

SQL Ledger Accounting is an accounting software or general ledger that build on SQL database server, and the common SQL database including: mySQL, Oracle, Microsoft SQL Server, Firebird, Interbase... SQL Accounting will share the same characteristics.

Source : Article Archive (subscribe)

Multi-tenant Sample Uses Online Storage Provider (MSDN Blogs)

Fri, 09 May 2008 04:02:00 GMT

LitwareHR has been updated to support SQL Server Data Services (SSDS) as the online storage provider. LitwareHR is the Software as a Service (SaaS) reference application that demonstrates how to create multi-tenant applications on the Microsoft platform. The application includes source code to show you how it was done. The latest update includes a new data model that works with SSDS...

Source : MSDN Blogs (subscribe)

Explore : MSDN

SQL Server source code analysis and management adds database security ([SecurityRatty] Lattest Articles)

Thu, 24 Apr 2008 07:41:32 GMT

Manage and protect your SQL Server databases by implementing source code analysis. Source code is the foundation of any application, and integrating methods to test and debug this code adds a key...

Source : [SecurityRatty] Lattest Articles (subscribe)

Oklahoma Data Leak (Planet Intertwingly)

Fri, 18 Apr 2008 11:30:25 GMT

Usually I don't bother blogging about these, but this one is particularly bad. Anyone with with basic SQL knowledge could have registered anyone he wanted as a sex offender. One of the cardinal rules of computer programming is to never trust your input. This holds especially true when your input comes from users, and even more so when it comes...

Source : Planet Intertwingly (subscribe)

Explore : Artists, BASIC, Music, Oklahoma, Rap and Hip-Hop

Open Question: Programming Language Certifications? (Science and Tech headlines)

Thu, 17 Apr 2008 22:40:01 GMT

I was wondering what certifications are available for the following that are legitimate: mySQL SQL C C++ php Java perl ASP I'm looking to solidfy my resume while I take night classes to finish my Computer Science Degree.

Source : Science and Tech headlines (subscribe)

Explore : ASP, C and C++, Java, Perl, PHP

Independent Software Vendors Migrate Applications to Oracle(R) Database from Microsoft SQL Server (PR News Wire )

Thu, 03 Apr 2008 12:00:00 GMT

... SYNECTICS all took advantage of Oracle PTS's services for successful migrations from Microsoft SQL Server to Oracle Database. The aforementioned ISVs are all members of the Oracle PartnerNetwork. -- Based in Bethlehem, Pa., Adaptik Corporation specializes in the delivery of sophisticated policy administration software solutions to property & casualty insurers. The ISV ported its PolicyWriter ...

Source : PR News Wire (subscribe)

Explore : Bethlehem, Grid Computing, Software and services, Telecommunication

[3/5] Writer's Block CMS "PostID" SQL Injection Vulnerability (Latest Secunia Security Advisories)

Thu, 03 Apr 2008 09:39:40 GMT

katharsis has discovered a vulnerability in Writer's Block CMS, which can be exploited by malicious people to conduct SQL injection attacks Be sure to check if your system is missing security updates or have insecure applications installed: http://secunia.com/software_inspector/ Feature Overview - The Secunia Software Inspector: * Detects insecure versions of applications installed * Verifies that...

Source : Latest Secunia Security Advisories (subscribe)

Bad SQL or MySQL Bug? (Pythian Group Blog)

Wed, 02 Apr 2008 22:18:57 GMT

One of my colleagues made a typo in a query today that led to me discovering this issue — I think it’s a bug, though it may just be how the language is defined. But certainly a subquery that cannot run should not act as if it returns TRUE. mysql> use test; Reading table information for [...]

Source : Pythian Group Blog (subscribe)

Explore : MySQL

MacUpdate: PostgreSQL 8.3.1 - SQL database server. (Free) (mac.ro)

Wed, 02 Apr 2008 22:08:56 GMT

PostgreSQL 8.3.1 PostgreSQL for Mac is a collection of graphical tools for using and managing PostgreSQL servers, as well as the server itself installable on any Mac running OS X version 10.4.x. It should work on 10.3.9, but it is not officially supported in the configuration. Also included as part of the package is the pgCocoaDB framework, an open source framework for developers to leverage...

Source : mac.ro (subscribe)

Explore : PostgreSQL

GSC.com.my hacked (Ahh.. Chewww!)

Sun, 30 Mar 2008 10:08:00 GMT

Source code found at GSC website Victim: http://www.gsc.com.my Since when? Unknown What? 2117966.net mass ASP/SQL injection Effect? The exploit code has the ability to install a malicious password stealing program on unpatched browsers via an Active X exploit You are advised not to visit GSC website at this moment until the problem is solved. For more info, go to GSC website compromised...

Source : Ahh.. Chewww! (subscribe)

Explore : Browsers, Technology