[OpenSER-Devel] TEXT vs BLOB data in database modules
Bogdan-Andrei Iancu
bogdan at voice-system.ro
Mon Apr 21 13:03:25 CEST 2008
Dan,
I was referring to the length as argument, not to the escape issue :).
Regards,
Bogdan
Dan Pascu wrote:
> On Monday 21 April 2008, Bogdan-Andrei Iancu wrote:
>
>> Hi Dan,
>>
>> Right, this is one more reason for having in the DB API a clear
>> distinction between the string-like and blob-like types.
>>
>
> SQL injection can happen with any of blob, text, char, varchar if not
> escaped. There is no distinction between the 2 regarding this issue.
>
>
More information about the Devel
mailing list