On Tue, 22 Apr 2008 12:29:28 -0700 (PDT),
lawpoop@gmail.com wrote:

>Well, if we have a database that's available to the public through a
>website, and some entreprising hacker wants to do an SQL injection,
>they would get quite a leg up if they could look up the exact names of
>our fields and tables.

They could try to query the INFORMATION_SCHEMA first,
or use SHOW CREATE ... and explore from there.
--
( Kees
)
c[_] Suburbia: where they tear out the trees & then name streets after them. (#78)