On Poxtel some of the shows moved to the DIY channel. But the reality is that TechTV actually had very little original content. It was the same shows repeated over and over and over (even more than usual for Poxtel - apparently, according to NickJr it increases our [/kids] retention of information).
The primary content that moved to DIY was utter crap. I don't think X-play was moved across (I cancelled my Poxtel a while ago). Pity because Adam was a pisser and Morgan was... well... not bad at all.
They're not trying to enter orbit, they are trying to reach space (100 km). And they are not taking passengers from point A to point B (unless you count point B as space).
I sleep very well. That query doesn't do anything - Unless I have a user who's name is 'foo\''; delete from user; --'
Try typing the query into Query Analyser and see what it does (like I said - nothing).
Maybe this'd work on Oracle or mySQL but on SQL Server (as I said in my original post) it's perfectly safe. If you're using a database that allows you to interupt a string like that then you should change you're database. I suspect, though that the correct output for your example would have been:
select id from user WHERE name='foo\\'; delete from users; --'
And the function you would be using on your database would be:
REPLACE(foobar, ''', '\'')
ie. Your escape sequence is different to the SQL Server escape sequence.
I did a quick google and found this as a description for sql injection. I would think that, at the very least, if you handle all your strings (and numbers) properly then this problem goes away. Say you have a field "LastName". If you just concatenate the value entered into the field into your SQL then you're asking for all kinds of problems (Any O'briens etc. out there?).
For all my fields I use a simple function to ensure that the data being put into the query is safe for the query (Replace(foobar, "'", "''") - for SQL Server). For numeric values, well, you just make sure that they are numerical as part of the validation (or you limit the characters they can type into a numeric field).
We can use a whole 4 copies. For a single user on a single PC. WTH is that all about? Maybe there's no PC on earth that could run more than 4 (or rather 5 if you count the RM copy). I wonder how screwy it'll get if you install 4 VM's and then delete one and install another...
MS just needs to include a copy of Linux with each copy of Windows. If you don't want to use IE (or whatever the specific product is - Messenger?) then you install Linux instead.
Of course the net outcome of this will probably be that MS products go up in price (hopefully just in the EU) to cover the fines and MS rolls on as normal. EU get's its pile of money, MS doesn't care and the users are the ones that pay for the EU's stupidity.
Haven't you heard. To respond to an arcticle you just search for well known phrases and then say "This guy sucks because he's bashing <insert keyword here>".
It's irrelevant that what was said is correct - it's the fact that <insert keyword here> was mentioned - which could only mean that <insert keyword here> was being bashed!
The X1900 XTX on the other hand has the option of HDR and FSAA as well as the possibility of running in Crossfire (assuming you can get hold of a similarly cooled master card)
What a completely pointless statement. Not only does the GX2 have HDR and FSAA (as have all cards since the 7xxx and Xxx series - perhaps even the 6xxx series) but you can (probably) run a GX2 in SLI mode. Recently a friend was upgrading and we looked into Crossfire. The motherboards are hard to get (here in Oz), and they're expensive (~$290 for a crossfire versus ~$160 for SLI). But at least ATI have moved away from the "Master" and "Slave" cards...
audio (noun) the recording and reproduction of sound
So the cameras actually record sound and the recording and reproduction of sound (They record themselves recording the sound?). That makes all the difference.
Here in Oz (or more specifically victoria) new estates are almost exclusively built with underground power - which is good because it reduces the number of drop bears in the burbs.
Slashdot Mirror
Hmm yes, now that you mention it I think you may be right.
On Poxtel some of the shows moved to the DIY channel. But the reality is that TechTV actually had very little original content. It was the same shows repeated over and over and over (even more than usual for Poxtel - apparently, according to NickJr it increases our [/kids] retention of information).
... well ... not bad at all.
The primary content that moved to DIY was utter crap. I don't think X-play was moved across (I cancelled my Poxtel a while ago). Pity because Adam was a pisser and Morgan was
Somehow I don't think you understood the joke...
They're not trying to enter orbit, they are trying to reach space (100 km). And they are not taking passengers from point A to point B (unless you count point B as space).
You mean Virgin Galactic. It's rumoured to be around $200k per flight.
Or maybe they are having more than one of them?
Young fossils? (120 years)
Living fossils
I sleep very well. That query doesn't do anything - Unless I have a user who's name is 'foo\''; delete from user; --'
Try typing the query into Query Analyser and see what it does (like I said - nothing).
Maybe this'd work on Oracle or mySQL but on SQL Server (as I said in my original post) it's perfectly safe. If you're using a database that allows you to interupt a string like that then you should change you're database. I suspect, though that the correct output for your example would have been:
select id from user WHERE name='foo\\'; delete from users; --'
And the function you would be using on your database would be:
REPLACE(foobar, ''', '\'')
ie. Your escape sequence is different to the SQL Server escape sequence.
I did a quick google and found this as a description for sql injection. I would think that, at the very least, if you handle all your strings (and numbers) properly then this problem goes away. Say you have a field "LastName". If you just concatenate the value entered into the field into your SQL then you're asking for all kinds of problems (Any O'briens etc. out there?).
For all my fields I use a simple function to ensure that the data being put into the query is safe for the query (Replace(foobar, "'", "''") - for SQL Server). For numeric values, well, you just make sure that they are numerical as part of the validation (or you limit the characters they can type into a numeric field).
Buy a dell (and a frying pan)...
We can use a whole 4 copies. For a single user on a single PC. WTH is that all about? Maybe there's no PC on earth that could run more than 4 (or rather 5 if you count the RM copy). I wonder how screwy it'll get if you install 4 VM's and then delete one and install another...
Not that I plan to find out.
I'm sorry, but I already own the patent on 4 easy steps...
:P
Time to profit...
"All fires must be extinguished before the return of the product to Dell for servicing."
True - he tried to abolish a number of religions though.
Zig Heil?
The largest source of death and despair was when some stupid git tried to abolish religion.
Not many though, so they don't count. :)
MS just needs to include a copy of Linux with each copy of Windows. If you don't want to use IE (or whatever the specific product is - Messenger?) then you install Linux instead.
Of course the net outcome of this will probably be that MS products go up in price (hopefully just in the EU) to cover the fines and MS rolls on as normal. EU get's its pile of money, MS doesn't care and the users are the ones that pay for the EU's stupidity.
I'm sure the creator(s) of ebay are probably fairly well off.
Haven't you heard. To respond to an arcticle you just search for well known phrases and then say "This guy sucks because he's bashing <insert keyword here>".
:P
It's irrelevant that what was said is correct - it's the fact that <insert keyword here> was mentioned - which could only mean that <insert keyword here> was being bashed!
Gee, get with the program!
The X1900 XTX on the other hand has the option of HDR and FSAA as well as the possibility of running in Crossfire (assuming you can get hold of a similarly cooled master card)
What a completely pointless statement. Not only does the GX2 have HDR and FSAA (as have all cards since the 7xxx and Xxx series - perhaps even the 6xxx series) but you can (probably) run a GX2 in SLI mode. Recently a friend was upgrading and we looked into Crossfire. The motherboards are hard to get (here in Oz), and they're expensive (~$290 for a crossfire versus ~$160 for SLI). But at least ATI have moved away from the "Master" and "Slave" cards...
and in less-than-leading-edge technology
Ah Pentiums, gotcha...
and it would be really interesting to know in greater detail how exactly they count their steps
1,2,3,4... Same as us I'd expect, only in antese.
And this site would only be an issue if someone suggested that they "file" the "paedometer" off the ant to see if it get's lost.
You beat me to it...
sound (noun) something that can be heard
audio (noun) the recording and reproduction of sound
So the cameras actually record sound and the recording and reproduction of sound (They record themselves recording the sound?). That makes all the difference.
I, for one, welcome our new worm overlords...
Here in Oz (or more specifically victoria) new estates are almost exclusively built with underground power - which is good because it reduces the number of drop bears in the burbs.