Header for Database Code Objects

Stored procedures and functions allow for the implementation of groups of data manipulation language (DML) statements as database objects.  Besides each code block having the relevant comments to facilitate other parties’ understanding of the same code blocks (amongst other reasons), a good coding practice is that some information about the object... [Read More]

Protecting against SQL Injection attacks

In a nutshell, an SQL injection attack is one where malicious code is passed to an instance of SQL Server for parsing and execution through a vulnerable application.  Although most SQL injection attacks can come from the web (having a larger “target audience”) even machines connected to an organisation’s network... [Read More]