[Owasp-rochester-announce] January meeting

Andrea Cogliati andreac at dollos.it
Mon Dec 24 12:06:16 EST 2007


January meeting will be held on Monday January 21st 6pm at Bryant &  
Stratton College. We'll follow up Steve's November presentation on  
SQL Injection and see what happens when we have to deal with dynamic  
queries.


Presenter: Andrea Cogliati

Topic: Dynamic SQL and SQL Injection

We will discuss the need for dynamic SQL and dynamic queries in web  
applications and related issues. Then we will show how to safely  
create dynamic queries in the data access layer and in stored  
procedures. Java and C# examples will be used to access SQL Server  
and MySQL databases.

Bio: Andrea Cogliati is a security trainer and consultant focusing in  
application security. He's worked as a programmer, system and network  
administrator also. Andrea holds a degree in Mathematics from Scuola  
Normale Superiore, Pisa, Italy.

Attendance to the meeting is free and open to anyone.

Merry Christmas and Happy New Year!

Andrea


Do you know that OWASP recently published several books from material  
available on the web site? Check them out at: http://stores.lulu.com/ 
owasp



More information about the Owasp-rochester-announce mailing list