No Picture

T-SQL Quirk: Using NOT IN With NULL Values

There is a little quirk in T-SQL with NULLs when using the NOT IN qualifier.  I use the term “quirk” loosely here because the behavior is exactly as intended, though it may not be obvious.  The following query shows a trivial example: At first glance, one might think that we’ll see returned the row for the Chevy MINIVAN.  However, when…

No Picture

SQL Injection… is this still a problem?

For some reason, today I came across at least a half-dozen blog posts and articles about how to avoid SQL injection attacks.  It had been a while since I had read about SQL injections, and an odd thought comes to mind: Why is SQL injection still an issue? This is such an easy problem to get around.  The use of…