March | 2011 | Data Maul

MySQL and the SQL Injection fiasco

Posted on March 31, 2011May 26, 2011 by Gogula G. Aryalingam

Embarrassing it is indeed when one (particularly one at the top of their trade) gets caught not doing what they should have been doing by setting an example.

The knowledge of existence of SQL Injection is so common that it goes without saying that sites have to guard themselves against these types of attacks. So when MySQL.com gets hit with SQL Injection (and successfully at that), you begin to wonder; where do we go and bang our heads now. Well, at least that’s how folks at MySQL might be feeling right now. See, even now if you google “mysql sql injection“, you get links on what SQL injection is, how it is used to exploit database weaknesses and how to prevent it. So isn’t it ironic, don’t you think when MySQL.com itself is the victim?

Continue reading MySQL and the SQL Injection fiasco

T-SQL Quiz 2011: Query out Data from Excel to 64-bit SQL Server table

Posted on March 21, 2011June 8, 2011 by Gogula G. Aryalingam

BeyondRelational.com is running a month long T-SQL quiz, and my question is on today. The question deals with putting out data from an Excel file to a 64-bit SQL Server table. The winner (the one who answers most questions best on the quiz) gets an Apple iPad.

So why not give it a try, after all it’s knowledge that we are all after isn’t it?

My question: Query out Data from Excel to 64-bit SQL Server table | T-SQL Quiz 2011 | #sqlserverquiz

Good Luck!

UPDATE: This question is now closed as part of the #SQLServerQuiz, but you can still continue the conversation…

Case-sensitive Querying in SQL Server

Posted on March 18, 2011April 8, 2011 by Gogula G. Aryalingam

Can you filter/sort/manipulate SQL Server data in a case sensitive manner? The answer is of course, yes. But first, let me brief you as to why this is a question at all.

SQL Server, like most database systems have a collation setting, which by default is case insensitive. Most of us are quite used to SQL Server with this setting (for some of us subconsciously it has been set in our heads that SQL Server is case insensitive). True to that, most applications that we develop usually also do not demand case sensitivity. The dilemma occurs when suddenly there’s a requirement to perform a case sensitive filter on a table, or perhaps retrieve unique records taking case sensitivity into consideration.

Continue reading Case-sensitive Querying in SQL Server