This quote, where is from? I’m thinking of Asimov’s short story The Last Question maybe?
moved here from: https://lemm.ee/u/abbadon420
- 0 Posts
- 6 Comments
Joined 5 months ago
Cake day: June 28th, 2025
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
Vibe cooking at the cafeteria in my office building: “Just a bit more salt”
')closes the input for the original sql statement. So the actual input would be “Robert”, but it’s not really important for this kind of attack.
;says that the statement is over and anything after is a new statement.
DROP TABLE customer;is that new statement, which deletes a table with the name “customers”.
--is the syntax for an sql comment. It effectively makes sure that any other sql statements in the actual script get ignored, so you don’t get a compile error.This is an effective attack for when some programmer uses unsanitized string instertion in their sql script. In this case I could imagine a statement like:
SELECT id FROM users WHERE name == {user_input};where{user_input}is the literal, unsanitized input that you give on the website.Notice that in this case, the
')doesn’t do anything, but it just becomes part of the input, so that is now “') Robert”.
What is this machine?