lists at forevermore.net
Mon Aug 16 11:28:27 EDT 2004
> Interesting. I always assumed it was my MySQL set up not exactly having
> the most robust security.
Mysql is generally pretty secure (as long as admins remember to change
the default password away from ''). Unfortunately, there are MANY
developers who send raw user input to it. The simple good practice of
quoting and escaping all user input would prevent this kind of exploit.
(sorry, this is a pet peeve and I feel I have to rant about it -- too
many otherwise-great web coders seem to miss this point all too often)
More information about the mythtv-users