Skip to Content
avatar image
Former Member

SQL injection protection when using NetWeaver Odata through DMZ

Hi All,

Here is my issue : We are trying to access Odata services, defined in Netweaver Gateway, through a DMZ. But, to prevent SQL injection, the quote character has been forbidden on the DMZ at Siteminder level, preventing also some of our Odata request to be performed. We have requested to allow the quote character, but questions arise about SQL injection protection without this security level.

Questions are:

  • Is SQL injection a risk in this context?
  • Is there a mean to manage protection against SQL injection at Netweaver Gateway level?

Many thanks for your help.

Nicolas Rouquette

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

0 Answers