Adding parameterized values. Which is more secure.

Ask a Question related to ASP.NET Security, Design and Development.

  1. Ryan Taylor #1

    Default Adding parameterized values. Which is more secure.

    Hello.

    Adding some data to a sql server 2000 table. Is the later more secure than
    the former? If so, why?

    SqlCommand sqlCmd = new SqlCommand(update, sqlConn);

    sqlCmd.Parameters.Add("@hashedPass", user.HashedPassword);



    SqlCommand sqlCmd = new SqlCommand(update, sqlConn);

    sqlCmd.Parameters.Add("@hashedPass", SqlDbType.NVarChar, 255).Value =
    user.HashedPassword;



    Thanks in advance.

    Ryan Taylor


    Ryan Taylor Guest
    Reply With Quote Reply With Quote

    2. Similar Questions and Discussions

    1. adding values
      I am trying calculate values after a selecion from a list box. code is below. <cfselect name="extra2" editable="true" width="250"...
    2. adding column values
      My problem is how to add dataset component given column values (number values) - for example values from PRICE column to have a total amount...
    3. adding values to the
      HI i have a datagrid with 5 columns. for the first 4 columns i do add the values using a arraylist. now i do need to add the values to the...
    4. Adding points to a database ( adding / subtrating numeric values)
      HI all, I have build a user database that comes with user points for browsing private section of my site. I would like to know what is the...
    5. Adding custom values and database values to DropDwonList
      The other way is to create a DataTable, put the --None-- as the first Row, then read the datareader into the DataTable, and append the --other-- at...
  2. Raterus #2

    Default Re: Adding parameterized values. Which is more secure.

    You would get a better answer on microsoft.public.dotnet.framework.adonet, but I don't think it really matters. Adding the extra values just allows sql server to more efficiently process the parameters, it doesn't do anything more to secure it.

    "Ryan Taylor" <rtaylor@stgeorgeconsulting.com> wrote in message news:OEXtPC1lEHA.896@TK2MSFTNGP12.phx.gbl...
    > Hello.
    >
    > Adding some data to a sql server 2000 table. Is the later more secure than
    > the former? If so, why?
    >
    > SqlCommand sqlCmd = new SqlCommand(update, sqlConn);
    >
    > sqlCmd.Parameters.Add("@hashedPass", user.HashedPassword);
    >
    >
    >
    > SqlCommand sqlCmd = new SqlCommand(update, sqlConn);
    >
    > sqlCmd.Parameters.Add("@hashedPass", SqlDbType.NVarChar, 255).Value =
    > user.HashedPassword;
    >
    >
    >
    > Thanks in advance.
    >
    > Ryan Taylor
    >
    >
    Raterus Guest
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may post replies
  • You may not post attachments
  • You may not edit your posts

Forum Rules


1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139