Many hyperlinks are disabled.
Use anonymous login
to enable hyperlinks.
Overview
| Comment: | Fix typos in the defense-against-dark-arts document. |
|---|---|
| Downloads: | Tarball | ZIP archive |
| Timelines: | family | ancestors | descendants | both | trunk |
| Files: | files | file ages | folders |
| SHA3-256: |
94ad3e51e735c14da42042dd80916dbc |
| User & Date: | drh 2018-12-14 19:01:35.894 |
Context
|
2019-01-09
| ||
| 19:54 | Fixes to the syntax diagrams for window functions: The parentheses were missing around the window-defn for the WINDOW clause. (check-in: 83da33aabc user: drh tags: trunk) | |
|
2018-12-15
| ||
| 01:17 | Merge defense-against-dark-arts fixes from trunk. (check-in: a8707b40a7 user: drh tags: branch-3.26) | |
|
2018-12-14
| ||
| 19:01 | Fix typos in the defense-against-dark-arts document. (check-in: 94ad3e51e7 user: drh tags: trunk) | |
| 15:54 | Rename the "security.html" document as "Defense Against Dark Arts". Add the additional recommendation to avoid memory-mapped I/O on untrusted database files. (check-in: 11d0259504 user: drh tags: trunk) | |
Changes
Changes to pages/security.in.
1 2 3 4 5 6 7 8 9 10 11 |
<title>Defense Against Dark Arts</title>
<tcl>hd_keywords security {attack resistance} \
{defense against dark arts}</tcl>
<fancy_format>
<h1>SQLite Always Validates Its Inputs</h1>
<p>
SQLite should never crash, overflow a buffer, leak memory,
or exhibit any other harmful behavior, even with presented with
maliciously malformed SQL inputs or database files. SQLite should
| | | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 |
<title>Defense Against Dark Arts</title>
<tcl>hd_keywords security {attack resistance} \
{defense against dark arts}</tcl>
<fancy_format>
<h1>SQLite Always Validates Its Inputs</h1>
<p>
SQLite should never crash, overflow a buffer, leak memory,
or exhibit any other harmful behavior, even with presented with
maliciously malformed SQL inputs or database files. SQLite should
always detect erroneous inputs and raise an error, not crash or
corrupt memory.
Any malfunction caused by an SQL input or database file
is considered a serious bug and will be promptly addressed when
brought to the attention of the SQLite developers. SQLite is
extensively fuzz-tested to help ensure that it is resistant
to these kinds of errors.
|
| ︙ | ︙ | |||
28 29 30 31 32 33 34 | <p> Applications that accept untrusted SQL inputs should take the following precautions: <ol> <li><p> Set the [SQLITE_DBCONFIG_DEFENSIVE] flag. | | | | 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 | <p> Applications that accept untrusted SQL inputs should take the following precautions: <ol> <li><p> Set the [SQLITE_DBCONFIG_DEFENSIVE] flag. This prevents ordinary SQL statements from corrupting the database file. <li><p> Consider using the [sqlite3_set_authorizer()] interface to limit the scope of SQL that will be processed. </ol> <h2>Untrusted SQLite Database Files</h2> <p>Applications that accept untrusted database files should do the following: <ol> <li value="3"><p> Run [PRAGMA integrity_check] or [PRAGMA quick_check] on the database as the first SQL statement after opening the database files and prior to running any other SQL statements. Reject and refuse to process any database file containing errors. <li><p> Enable the [PRAGMA cell_size_check=ON] setting. <li><p> |
| ︙ | ︙ |