Answer / jerry joseph

1. identify and create optimal indexes for your tables

every table should have at least a clustered index

Indexes should be considered on all columns that are
frequently accessed by the WHERE, ORDER BY, GROUP BY, TOP,
and DISTINCT clauses

Static tables can be more heavily indexed that dynamic tables

2. An SQL Injection attack is a form of attack that comes
from user input that has not been checked to see that it is
valid. The objective is to fool the database system into
running malicious code that will reveal sensitive
information or otherwise compromise the server.

Example:
StrSQL = "SELECT * from Users WHERE username = '" +
txtUserName.Text + "' AND password = '" + txtPassword.Text +
"'";
if txtUserName is entered as "admin' OR 1 = 1;--" the query
becomes
"SELECT * from Users WHERE username = 'admin' OR 1 = 1;--'
AND password = '" + txtPassword.Text + "'"
user logs in as admin

Prevention :
Use Parameterized Queries or Stored Procedures to prevent
SQL Injection.

What is it unwise to create wide clustered index keys?

0 Answers  

---

Do you know exporting and importing utility?

0 Answers  

---

Write a query to include a constraint, to check whether the employee salary is greater than 5000?

0 Answers   TCS,

---

How to delete an existing row with delete statements in ms sql server?

0 Answers  

---

What is abstracting periodical?

0 Answers  

---

---

How to locate and take substrings with charindex() and substring() functions?

0 Answers  

---

How can I create a table from another table without copying any values from the old table?

3 Answers  

---

Tell me about the approaches which you used to counter the DI problems.

0 Answers   EXL,

---

What is dbcc command in sql server?

0 Answers  

---

Difference between Cluster and Non-cluster index?

32 Answers   Accenture, Agility e-Services, eClinicalWorks, HCL, Infosys, Oracle, Satyam, Yardi,

---

What do you need to connect php to sql server?

0 Answers  

---

What are alternate keys?

0 Answers  

---