revExecuteSQL Security

Mark Wieder mwieder at ahsoftware.net
Wed Nov 12 23:18:29 EST 2014


Dan-

Wednesday, November 12, 2014, 7:29:06 AM, you wrote:

> Is it safe to use these calls (read and write) to a server-side
> database in a commercially released app?

No.

> Or, is it just really intended for local databases?

That's more the case. Any database worth talking about will
deliberately make you go out of your way to shoot yourself in the
foot. The more correct way to do this is to have a service running on
the server that acts as a secure buffer between the database and the
outside world.

-- 
-Mark Wieder
 ahsoftware at gmail.com

This communication may be unlawfully collected and stored by the National 
Security Agency (NSA) in secret. The parties to this email do not 
consent to the retrieving or storing of this communication and any 
related metadata, as well as printing, copying, re-transmitting, 
disseminating, or otherwise using it. If you believe you have received 
this communication in error, please delete it immediately.





More information about the use-livecode mailing list