Re: SQL Injection Basics

[Alex Russell]

| [...] Defense in depth is nothing new, but it's kind of

[dreamwvr@dreamwvr.com]

| Well said. I recall a discussion sometime pre black monday. Back

I've already stated that it was the _term_ "boundary filtering" that thrilled me, not the concept of defense in depth or any other _concepts_ for that matter. I just did a couple of Google searches:

        "boundary filtering"      142 matches
        "input validation"      31000 matches

Of the 142 matches for the term "boundary filtering", some are used in docs on image processing, while the larger share seem to be used in related to network perimiters, often with computer viruses in mind.

The ideas of boundary filtering within applications may be old, but the _term_ doesn't seem that common, at least not when it comes to how it is used by the OWASP Filters project.

Do you need help?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related securityfocus.com Links bugtraq certification focus-bsd focus-ids focus-ih focus-linux focus-ms focus-sun focus-unix-other focus-virus forensics incidents libnet linux-secnews ms-secnews pen-test secpapers secprog sectools secureshell security-basics securityjobs sf-news vuln-dev webappsec Request more information about Pantek

Alex, where did you get the term from?

Sverre.

-- 
shh@thathost.com		Computer Geek?  Try my Nerd Quiz
http://shh.thathost.com/	
http://nerdquiz.thathost.com/