Category: antipattern

  • Speaking on SQL Injection at MySQL Conference

    Speaking on SQL Injection at MySQL Conference

    I’m speaking this year at the MySQL Conference & Expo 2010 in Santa Clara. Be sure to get your early registration discount by Feb 22! If you miss that deadline, get 25% off with this discount code: mys10fsp I’m presenting a talk on SQL Injection Myths and Fallacies. This may seem like a topic that’s […]


    Photo by Mike Gogulski, used in accordance with the Creative Commons BY-SA 3.0 license The photo above illustrates (by counter-example) an important characteristic of a normalized database: each logical “type” of attribute belongs in a separate column. Just because three values happen to be numeric doesn’t mean it makes sense to SUM() them together. But if […]