canmove, Confirmed users
637
edits
User talk:Comrade693/SQLite 3.6.4 Security Review: Difference between revisions
User talk:Comrade693/SQLite 3.6.4 Security Review (view source)
Revision as of 19:40, 22 October 2008
, 22 October 2008→Review comments
| Line 65: | Line 65: | ||
== Review comments == | == Review comments == | ||
* tangentially related: review code that has turned off synchronous writes for data integrity. Cookies, permission manager, per-site settings, offline cache | * tangentially related: review code that has turned off synchronous writes for data integrity. Cookies, permission manager, per-site settings, offline cache | ||
* some SQL consumers were added prior to systematic security design reviews. Need to look at their SQL and make sure we're not vulnerable to injection. | |||
* Need a "best practices" mozStorage developer doc, for Mozilla developers and addon developers. | |||