LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Fedora rejects SQLninja

Fedora rejects SQLninja

Posted Nov 11, 2010 16:21 UTC (Thu) by gidoca (subscriber, #62438)
In reply to: Fedora rejects SQLninja by dlang
Parent article: Fedora rejects SQLninja

You are right /if/ you know that you have a SQL injection. However, if you're not sure, you might just introduce one and see if you can break in using sqlninja. After all, being able to get full access to a server by exploiting a SQL injection is pretty serious. If you can, IMHO you better do something about it, even if you don't currently vulnerable to SQL injections. Like, for instance, move away from MS SQL Server (which seems to be the only SQL server sqlninja supports).

(Log in to post comments)

Fedora rejects SQLninja

Posted Nov 11, 2010 16:23 UTC (Thu) by gidoca (subscriber, #62438) [Link]

I meant to say: "...even if your software isn't vulnerable to..."

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds