|
Hey, I use to be pretty quick at referring people to Colin's article, but I've been kind of slacking lately
"Any sort of work in VB6 is bound to provide several WTF moments." - Christian Graus
|
|
|
|
|
subbu.sk wrote: why should we go for SqlInjection
OK, you really don't understand what it is. You should search this site, there's at least two great articles on here about it.
Christian Graus - Microsoft MVP - C++
"I am working on a project that will convert a FORTRAN code to corresponding C++ code.I am not aware of FORTRAN syntax" ( spotted in the C++/CLI forum )
|
|
|
|
|
|
Classic!
|
|
|
|
|
SqlInjection is a powerful programming tool which, when properly leveraged, allows the developer to provide a skilled user the ability to... ummm... destroy the database.
|
|
|
|
|
Very good.
In an exceptionally skilled developer it allows them to destroy the whole server too! When I used to do SQL Server Injection Attack talks, I used to show right upto one step before formatting the hard drive on my laptop.
|
|
|
|
|
Hi,
I am using SQL Server 2005 Express Edition. It has been installed my system like name as "A". And also i have created a database like name as "MyDB".
How can i access database("MyDB") from another system like name as "B". It is in same network. I tried to access through ODBC connection. It returned TCPIP error. I have checked through give IP address for ("B") in my system ("A"). It has connected and opened successful.
Thanks in Advance
Rameshkumar Thirumalaisamy
|
|
|
|
|
SQL Server, as installed, has all remote connections disabled. You must use the configuration tools to enable TCP IP.
|
|
|
|
|
Hi,
Thank you your suggestion.
I tried to change configuration manager for enabled TCP/IP. Again the following error returned
"[Microsoft][ODBC SQL server Driver][TCP/IP Sockets]SQL server does not exist or access denied"
Thanks in Advance
Rameshkumar Thirumalaisamy
|
|
|
|
|
I want to use the text from a textBox in webform1 as input parameter in a SQL query on webform2. I'm building a website where customers can watch their unique information pulled from a SQL database. Anyone with a good idea? Thank you
Petter
|
|
|
|
|
Have you solved this problem?
"Real programmers just throw a bunch of 1s and 0s at the computer to see what sticks" - Pete O'Hanlon
|
|
|
|
|
I have a problem with my c# application. I am using a MySql Database Server, and I make a connection every time I have to make a query. I noticed that this is the cause why my application is so slow. I have done only one connection for all queries and after a while the server kills my connection. What can I do?
|
|
|
|
|
It's not much of an answer, but when I program against Sql Server I do the same thing and open a connection each time I want to perform and action. This way you only have a connection formed when it's needed. The performance of this has always been fine.
Can you quantify slow? Are we talking a few extra milliseconds or a few extra seconds?
Which ado.net provider are you using?
Are you running the DB locally? Over a network? over the internet?
Note: I've not programmed against mysql so I probably wont be able to answer, but these extra answers will help others help you with the problem.
|
|
|
|
|
I forgot to mention that I'm using a mysql driver for c# not a ado.net and the db is running over the internet.
The application is very slow, I'm talking about a few extra seconds per operation with db. And for now the db is not very large.
|
|
|
|
|
hi..
How many users can connect SqlServer2005 express edition at a time?
D.Willington
|
|
|
|
|
http://msdn2.microsoft.com/en-us/library/ms345154.aspx[^]
The SQL engine supports 1 CPU, 1 GB RAM, and a 4 GB database size. This mechanism permits easy differentiation from other SQL Server 2005 editions by having well defined cut-off points. Otherwise, there is no workload throttle and the engine performs as in other editions. There is no hard-coded limit to the number of users that can attach to SQL Server Express but their CPU and memory limits impose practical limits on the number of users that can achieve acceptable response times from a SQL Server Express database.
|
|
|
|
|
Hi friends,
My Requriment is When The Keyboard Left Key Is pressed it Works Like A BackSpace Key.
plz help me.asap.
regards
venkat.
venkat
-- modified at 7:38 Thursday 27th September, 2007
|
|
|
|
|
Why have you posted this question in the SQL forum when it is clearly a C# question?
Paul Marfleet
|
|
|
|
|
Why would you do this also...??
|
|
|
|
|
Hi i have one query this is giving o/p:
But Probs is its taking long time to produce the o/p:
any one give me the solution to fetch quickily for the below query:
My query:
Select CO_NAME,Sector,Analyst,edate,CurrentSector,CurrentConSec,Sec_Recomm,Sec_Confidence,CurrentMarket,
CurrentConMark,LastMarket,LastConMark,ClosingMarketPrice AS ClosingPrice,
CurrentClosingMarketPrice AS CurrentClosingPrice,
((CurrentClosingMarketPrice)/(ClosingMarketPrice)) AS Performance,AnnId
from
(SELECT first 100 MASTER.CO_NAME, NewCompany.Co_Name AS Company, SectorMaster.Sector_Name AS Sector,
UserMaster.UserName AS Analyst, AnalystViews.DOE AS edate, AnalystViews.Sec_Recomm AS CurrentSector,
AnalystViews.Sec_Confidence AS CurrentConSec,
(SELECT first 1 Q.Sec_Recomm FROM AnalystViews Q ,MeetingSchedule INNER JOIN MeetingSchedule M ON
Q.AnnounceId = M.AnnounceId WHERE (Q."ACTIVE" = 'T') AND (Q.Completed = 'Y') AND
M.CO_CODE = MeetingSchedule.CO_CODE ORDER BY Q.DOE) ,
AnalystViews.Sec_Confidence,AnalystViews.Mark_Recomm AS CurrentMarket,
AnalystViews.Sec_Confidence AS CurrentConMark ,AnalystViews.Mark_Recomm AS LastMarket ,
(SELECT first 1 Q.Sec_Confidence FROM AnalystViews Q ,MeetingSchedule M INNER JOIN
MeetingSchedule ON Q.AnnounceId = M.AnnounceId WHERE (Q."ACTIVE" = 'T') AND (Q.Completed = 'Y') AND
M.CO_CODE = MeetingSchedule.CO_CODE ORDER BY Q.DOE) AS LastConMark ,
(SELECT first 1 "CLOSE" FROM DLYPRICEBSE ,MeetingSchedule ,AnalystViews
WHERE (DLYPRICEBSE.Co_Code = MeetingSchedule.Co_Code) AND (DLYPRICEBSE."DATE"<= AnalystViews.DOE)
ORDER BY DLYPRICEBSE."DATE" DESC) AS ClosingMarketPrice,
(SELECT first 1 "CLOSE" FROM DLYPRICEBSE ,MeetingSchedule WHERE
(DLYPRICEBSE.Co_Code = MeetingSchedule.Co_Code) ORDER BY DLYPRICEBSE."DATE" DESC) AS CurrentClosingMarketPrice,
AnalystViews.AnnounceID AS AnnId FROM MASTER RIGHT OUTER JOIN NewCompany RIGHT OUTER JOIN
MeetingSchedule ON NewCompany.Co_code = MeetingSchedule.Co_Code ON MASTER.CO_CO
Regards,
Magi
|
|
|
|
|
Look at the execution plan produced by SQL Server for your query. Identify those parts of the query that are consuming a disproportionately large amount of the query batch time and try and optimise them.
Paul Marfleet
|
|
|
|
|
Hi Magi
Which database engine is this for? Informix?
Try getting the individual sub-queries to work separately. For example:
(SELECT first 1 Q.Sec_Confidence
FROM AnalystViews Q, MeetingSchedule M
INNER JOIN MeetingSchedule
ON Q.AnnounceId = M.AnnounceId
WHERE Q."ACTIVE" = 'T'
AND Q.Completed = 'Y'
AND M.CO_CODE = MeetingSchedule.CO_CODE
ORDER BY Q.DOE) AS LastConMark looks like it is supposed to be a correlated sub-query (and should link back to the outside query). It is probably doing lots of work that you don't want it to do (and I guess is returning the wrong answer).
In this case, I would expect at least one of the links to the MeetingSchedule table to be removed. Possibly:
SELECT FIRST 1 Q.Sec_Confidence
FROM MeetingSchedule M
INNER JOIN AnalystViews Q
ON Q.AnnounceId = M.AnnounceId
AND Q."ACTIVE" = 'T'
AND Q.Completed = 'Y'
WHERE M.CO_CODE = MeetingSchedule.CO_CODE
ORDER BY Q.DOE Which you could test by replacing "MeetingSchedule.CO_CODE" with an appropriate code.
Hope this helps.
Andy
|
|
|
|
|
Hi All.
I need Client tool to connect SQL-2005 (somting like 'SQL query Analyzer')
and some API tool to connect SQL-2005 from VC++ 6.0
|
|
|
|
|
david bagaturia wrote: and some API tool to connect SQL-2005 from VC++ 6.0
SQL Management Studio : downloadable from Microsoft.
david bagaturia wrote: I need Client tool to connect SQL-2005 (somting like 'SQL query Analyzer')
Standard SQL 2000 code will work as well as ODBC.
|
|
|
|
|
simply all i want to do is to make this expression works : DataSet.Tables["Accounting"].Columns["Total"].Expression = "Income - Spends";
this i put in the form load but when i try to complie vs 2005 gives me some crap error which i dunno what does it means (The column mapping from SourceColumn 'Total' failed because the DataColumn 'Total' is a computed column) i dunno what exactely it requires to do my simple math operation on the database and return me a decent value..and if this way is wrong what is right to do it..i hope someone get to me as fast as possible..thanx!
|
|
|
|