View Single Post
10-16-2007, 09:07 AM
ktsirig is offline ktsirig
Status: Junior Member
Join date: Oct 2005
Posts: 46
iTrader: 0 / 0%

ktsirig is on a distinguished road

  Old  Prevent injection MSSql server

I wanted to ask if anyone knows of a way to prevent injection in an SQL SERVER 2005. I mean, is there any way to do all the blocking in the server and not have to escape each special character one-by-one?
For example, in PHP I used mysql_escape_string and automatically the string was OK to send to the database... Is there something similar in SQL Server?

Thank you