What is the BEST defense against a Structured Query Language (SQL) injection attack?

  • Post author:
  • Post category:Uncategorized
  • Post comments:0 Comments
  • Post last modified:December 23, 2021
  • Reading time:1 mins read

Last Updated on December 23, 2021 by Admin

What is the BEST defense against a Structured Query Language (SQL) injection attack?

  • Regularly updated signature files
  • A properly configured firewall
  • An intrusion detection system
  • Strict controls on input fields
Explanation:

Structured Query Language (SQL) injection involves the typing of programming command statements within a data entry field on a web page, usually with the intent of fooling the application into thinking that a valid password has been entered in the password entry field. The best defense against such an attack is to have strict edits on what can be typed into a data input field so that programming commands will be rejected. Code reviews should also be conducted to ensure that such edits are in place and that there are no inherent weaknesses in the way the code is written; software is available to test for such weaknesses. All other choices would fail to prevent such an attack.

0 0 votes
Article Rating
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments