|
Comments
|
|
Explained beautifully
|
|
|
Good job
|
|
|
good job
|
|
|
Very basic
|
|
|
Great video- I'll recommend it to my junior team members.
|
|
|
I'd like to see an advanced video about methods of code obfuscation
|
|
|
Really wanted to see more ways in which injection can take place and how to prevent them. This was way too basic.
|
|
|
Short and Clear. Nice Job. Would like to see advanced videos too.
|
|
|
A little basic but probably good for beginners
|
|
|
great video! Iwas able to understnad it and I am not a programmer... :)
|
|
|
Fantastic video, something I don't know a lot about so this video was very useful to me.
|
|
|
Thank you so much for making this easier to understand.
|
|
Paul Swanberg on
5/11/2009
Short and to the point
|
|
Steve Harris on
5/11/2009
might want to add additional videos of more complex ways sql injection can occur
|
|
Carla Wilson on
5/11/2009
Would have been nice to see an example of validating a string input, as this is more complicated than validating for an integer value.
|
|
|
You should have given an example of how to validate varChar data. It's easy to check for an integer, but what's the best way to validate TEXT. Showing a check for certain characters (e.g. ";") or whatever way you'd recommend, would have been worth the extra minute or less on the clip.
|
|
Marshall Cole on
5/11/2009
Awesome!!!!!!!!!!!!!!!1
|
|
|
A great basic overview of SQL injection and how to protect against it.
|
|
|
Input validation is not nessesary if you use command object with parameters. PLEASE DO NOT USE DYNAMIC SQL!!!
|
|
|
I really like the entire JumpstartTV concept and content -- I can get a bite of good info with my morning coffee. Thanks!
|
|
|
Good basic explanation. Would have been nice to show other injection attacks, since validation on text fields is much more difficult.
|
|
|
Great and simple way to explain SQL injection
|
|
Mark Sopczak on
5/11/2009
Very good.
|
|
|
This was a great video.
|
|
luther smith on
5/11/2009
Very clear, no unnecessary words
|
|
|
Basic with great example; good explanation.
|
|
|
nice an trivial way to illustrate the problem
|
|
Ahmad Elayyan on
5/12/2009
x
|
|
|
Great video. All developers should be aware of this.
|
|
|
Great demo.
|
|
|
Very insightful and valuable.
|
|
|
great simple example of the issue
|
|
|
The question at the end had almost nothing to do with the content material, other than both talked about SQL Injection. The video discussed security and validation; the question referred specifically to EXEC() and sp_executeSQL, neither of which were mentioned in the video.
|
|
|
short but very interesting
|
|
David Lundell on
5/27/2009
good intro to sql injection but glosses over the vulnerabilities in stored procs. also the question afterwards didn't come from the video
|
|
|
Best explanation of SQL Injection yet. Other examples I've seen are much too wordy and clubmsy. This demo was great.
|
|
|
Great information.
|
|
|
dh
|
|
|
Short and sweet with applicable information. Thank you!
|
|
|
cool
|
|
|
Nice one!
|