[Owasp-rochester-announce] January meeting
andreac at dollos.it
Mon Dec 24 12:06:16 EST 2007
January meeting will be held on Monday January 21st 6pm at Bryant &
Stratton College. We'll follow up Steve's November presentation on
SQL Injection and see what happens when we have to deal with dynamic
Presenter: Andrea Cogliati
Topic: Dynamic SQL and SQL Injection
We will discuss the need for dynamic SQL and dynamic queries in web
applications and related issues. Then we will show how to safely
create dynamic queries in the data access layer and in stored
procedures. Java and C# examples will be used to access SQL Server
and MySQL databases.
Bio: Andrea Cogliati is a security trainer and consultant focusing in
application security. He's worked as a programmer, system and network
administrator also. Andrea holds a degree in Mathematics from Scuola
Normale Superiore, Pisa, Italy.
Attendance to the meeting is free and open to anyone.
Merry Christmas and Happy New Year!
Do you know that OWASP recently published several books from material
available on the web site? Check them out at: http://stores.lulu.com/
More information about the Owasp-rochester-announce