Search icon CANCEL
Subscription
0
Cart icon
Your Cart (0 item)
Close icon
You have no products in your basket yet
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Conferences
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Oracle Advanced PL/SQL Developer Professional Guide

You're reading from   Oracle Advanced PL/SQL Developer Professional Guide Master advanced PL/SQL concepts along with plenty of example questions for 1Z0-146 examination with this book and ebook

Arrow left icon
Product type Paperback
Published in May 2012
Publisher Packt
ISBN-13 9781849687225
Length 440 pages
Edition 1st Edition
Languages
Arrow right icon
Author (1):
Arrow left icon
Saurabh K. Gupta Saurabh K. Gupta
Author Profile Icon Saurabh K. Gupta
Saurabh K. Gupta
Arrow right icon
View More author details
Toc

Table of Contents (22) Chapters Close

Oracle Advanced PL/SQL Developer Professional Guide
Credits
Foreword
About the Author
Acknowledgement
About the Reviewers
www.PacktPub.com
Preface
1. Overview of PL/SQL Programming Concepts FREE CHAPTER 2. Designing PL/SQL Code 3. Using Collections 4. Using Advanced Interface Methods 5. Implementing VPD with Fine Grained Access Control 6. Working with Large Objects 7. Using SecureFile LOBs 8. Compiling and Tuning to Improve Performance 9. Caching to Improve Performance 10. Analyzing PL/SQL Code 11. Profiling and Tracing PL/SQL Code 12. Safeguarding PL/SQL Code against SQL Injection Attacks Answers to Practice Questions Index

Practice exercise


  1. Which method would you employ to immunize the PL/SQL code against SQL Injection attacks?

    1. Replace Dynamic SQLs with Static SQLs.

    2. Replace concatenated inputs in Dynamic SQL with binds arguments.

    3. Declare the PL/SQL program to be executed by its invoker's rights.

    4. Removing string type parameters from the procedure.

  2. Use static SQL to avoid SQL injection when all Oracle identifiers are known at the time of code execution.

    1. True

    2. False

  3. Choose the impact of SQL injection attacks:

    1. Malicious string inputs can extract confidential information.

    2. Unauthorized access can drop a database.

    3. It can insert ORDER data in EMPLOYEES table.

    4. A procedure executed with owners' (SYS) rights can change the password of a user.

  4. Pick the correct strategies to fight against of SQL injection

    1. Sanitize the malicious inputs from the application layer with DBMS_ASSERT.

    2. Remove string concatenated inputs from the Oracle subprogram.

    3. Dynamic SQL should be removed from the stage.

    4. Execute a PL/SQL program with its creator's rights.

  5. Statistical...

lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime
Banner background image