Re: Logging of SQL statements -- MIDRANGE-L

Subject: Re: Logging of SQL statements
From: Diego Kesselman <diegokesselman@xxxxxxxxx>
Date: Mon, 7 Aug 2017 11:14:44 -0500
List-archive: <http://archive.midrange.com/midrange-l/>
List-help: <mailto:midrange-l-request@midrange.com?subject=help>
List-id: Midrange Systems Technical Discussion <midrange-l.midrange.com>
List-post: <mailto:midrange-l@midrange.com>
List-subscribe: <http://lists.midrange.com/mailman/listinfo/midrange-l>, <mailto:midrange-l-request@midrange.com?subject=subscribe>
List-unsubscribe: <http://lists.midrange.com/mailman/options/midrange-l>, <mailto:midrange-l-request@midrange.com?subject=unsubscribe>

Cindy,

you can use an Exit Point Program to log all SQL statements (build your own or buy a product), start a database monitor or trace SQL statements from the application server. It depends on what are you trying to catch.

You can use commercial products to protect your application, but first I'll scan the application(s) to prevent SQL Injection issues.

Regards

Diego E. KESSELMAN

El 07/08/17 a las 11:08, Cyndi Bradberry escribió:

Is there a way to log the specific SQL statements used by a particular user profile ? That captures the actual sql statement ? We are looking to trap all sql statements in order to back trace in the event of an sql injection attack from our web services.

Thanks,

Cyndi B.
Boise, ID

As an Amazon Associate we earn from qualifying purchases.

Follow-Ups:

Re: Logging of SQL statements , Rob Berendt

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.