使用参数化命令,避免动态sql语句。
Use parameterized commands and avoid dynamic SQL statements.
除了安全方面的优点外,若要组织以SQL陈述式传递的值或传递至预存程序的值,参数化命令也是方便的方法。
In addition to the security benefits, parameterized commands provide a convenient method for organizing values passed with a SQL statement or to a stored procedure.
使用参数化命令有助于防范SQL投射攻击,在此类攻击中,攻击者会「投射」命令到 SQL陈述式中,对伺服器的安全性造成危害。
Using parameterized commands helps guard against SQL injection attacks, in which an attacker "injects" a command into a SQL statement that compromises security on the server.
在我能够定义一个参数和一个字段之间的这种关联如何与库进行通信之前,我需要决定我希望如何格式化这些命令行参数。
Before I can define how this linkage between an argument and a field is communicated to the library, I first need to decide how I want to format the command line arguments.
序列化所能有的附加参数取决于这个命令。
Depending on the command, the serialization can have additional parameters.
ActionCatalog包含配方构造步骤函数的一个参数化的RecipeJAUS命令序列。
The ActionCatalog contains a parametrized RecipeJAUS command sequence for recipe construct step functions.
要进一步自动化安装,可以使用 lpar_netboot命令的 -g参数,将其他参数传递到刚引导的系统的安装程序。
To further automate the install, you can use the -g argument of the lpar_netboot command to pass additional parameters to the install program of the newly booted system.
每个命令都被作为一个串行化的String命令名后跟一个Map参数发送,或者只是作为一个同时包含命令名和参数的map发送。
Each command is sent as either a serialized String command name followed by a Map of parameters or just a Map containing both the command name and parameters.
以液压元件参数化设计为例,介绍了基于命令解释器模型的程序设计方法。
Take the parameterized design of hydraulic component as an example the program designing method based on command explainer model was introduced.
命令模式:将“请求”封装成对象,以便使用不同的请求队列或者日志来参数化其他对象。命令模式也支持可撤销的操作。
The Command Pattern: encapsulates a request as an object, thereby letting you parameterize other objects with different requests, queue or log requests, and support undoable operations.
格式化字符串是一个字面量文本,内嵌了一些命令指示,把其后的参数转入文本中。
The format string contains literal text, embedded with directives, for converting the trailing list of arguments into text.
如果有使用动态sql,请务必将命令参数化,也绝对不要在查询字串中直接包含参数值。
If you use dynamic SQL, be sure to parameterize your commands, and never include parameter values directly into the query string.
参数化的命令会借由保证从外部来源接收的值只以数值传递,而不以SQL陈述式传递,以防范SQL投射攻击。
Parameterized commands guard against a SQL injection attack by guaranteeing that values received from an external source are passed as values only, and not part of the SQL statement.
将一个请求封装成一个对象,从而让你使用不同的请求把客户端参数化,对请求排队或者记录日志,可以提供命令的撤销和恢复功能。
Encapsulate a request as an object, thereby letting you parameterize clients with different requests, queue or log requests, and support undoable operations.
运用参数化程序设计语言APDL,引入参数化变量,和判断、循环等流程控制命令,详细说明了梯级参数化模块的开发过程。
Using the parametric programming language APDL, introducing parametric variables, the judge and circulation flow control command, detailing description of steps parameter module development process.
“参数化数据源”命令还将在窗体上创建控件,以供输入参数值和执行查询。
Parameterize Data Source command also creates controls on your form to input the parameter values and execute the query.
用ANSYS的内部命令和APDL语言以及参数化技术建立了龙门起重机结构的有限元参数化模型。
The main research contents and results of the dissertation are as fellows: 1 To build a portal structure's parameterized FEM model using ANSYS internal command-apdl and parameterized method.
应用APDL参数化设计语言对CAE优化设计的前后置处理进行编程处理,生成分析命令批处理脚本文件,进而实现求解过程的自动化。
The APDL language was used to program the Preprocessor and Postprocessor of CAE optimal Design. The command batch files were built to implement automatic computation and analysis.
我们帮您人工翻译,但要付费,有意加我扣扣。利用有限元软件ANSYS的命令流和参数化设计语言(APDL)建立渐开线标准斜齿圆柱齿轮啮合对的三维模型。
Using finite element software ANSYS command flow and parametric design language (APDL) to establish standard involute cylindrical bevel wheel of 3d model of meshing.
我们帮您人工翻译,但要付费,有意加我扣扣。利用有限元软件ANSYS的命令流和参数化设计语言(APDL)建立渐开线标准斜齿圆柱齿轮啮合对的三维模型。
Using finite element software ANSYS command flow and parametric design language (APDL) to establish standard involute cylindrical bevel wheel of 3d model of meshing.
应用推荐