linq
There are 2 entries for the tag
linq
In my WebDD09 talk on Saturday I mentioned SQL injection and LINQ. I’ve had a query about what exactly is the problem with LINQ as I was constrained by time and only mentioned it in passing. Microsoft asserts that LINQ stops SQL injection attacks: LINQ to SQL avoids such injection by using SqlParameter in queries. User input is turned into parameter values. This approach prevents malicious commands from being used from customer input. This is generally true, however LINQ has a problem method – ExecuteQuery. This methodexecutes queries directly on the server which...
There’s a range of events coming up in the next few months; In February we’ve got Guy Smith-Ferrier coming to nxtgen Oxford to talk about Astoria ADO.NET Data Services, and a nugget from a new speaker, Marc Gravell on adding operators to generics. If you want to come along please register first, it makes my life easier. What:Ahhh, Ahh, AstoriaThe emergence of Web 2.0 technologies has brought new opportunities and caused us to solve old problems in new ways. AJAX and Silverlight applications need read/write access to data and business objects without performing full page refreshes and without dumbing down...