Someone else look at SqlExec.runStatements() and tell me if the class
does or does not support delimiters anywhere other than the end of the line.
and if not, is this intentional?
It certainly lets you do
SELECT * from Events where name=";" ;
but it doesnt let you go
SELECT * from Events where name="a" ; DROP TABLE foo;
I ask not as I'm changing the task, but I'm looking at it as I do the
smartfrog DB setup/teardown and it seems to behave differently from what
I'd code. I'm going to pass in everything as is until I get to a ;\n or
the end of the stream; no comment games. I'm just curious if the logic
in SqlExec is deliberate or accidental.
-setve
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
