[Gllug] Introductions to Databases

Richard Jones rich at annexia.org
Fri Jul 17 20:15:33 UTC 2009


On Fri, Jul 17, 2009 at 01:56:56PM +0100, James Courtier-Dutton wrote:
> SQL is not necessarily the best database query language.
> For example, even having a language that lets one enter an sql query
> within a parameter is just asking for security problems.
> XMLDB is an alternative.

Sorry, but this is a dreadful mischaracterization of both SQL and
XMLDB.

Well designed programming languages don't allow you to do SQL
injection.  The fact that poorly designed languages do (cough PHP
cough) is nothing to do with SQL at all, and would apply to any DB
query language.

XMLDB isn't an alternative to SQL, it's a completely different thing,
used in conjunction with SQL statements.  Also XMLDB is a proprietary,
Oracle only, feature, and as such can hardly be described as an
alternative unless you want to be locked in to Oracle.

Rich.

-- 
Richard Jones
Red Hat
-- 
Gllug mailing list  -  Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug




More information about the GLLUG mailing list