Skip to Content

SQL injection protection when using NetWeaver Odata through DMZ

Nov 04, 2016 at 10:27 AM


avatar image
Former Member

Hi All,

Here is my issue : We are trying to access Odata services, defined in Netweaver Gateway, through a DMZ. But, to prevent SQL injection, the quote character has been forbidden on the DMZ at Siteminder level, preventing also some of our Odata request to be performed. We have requested to allow the quote character, but questions arise about SQL injection protection without this security level.

Questions are:

  • Is SQL injection a risk in this context?
  • Is there a mean to manage protection against SQL injection at Netweaver Gateway level?

Many thanks for your help.

Nicolas Rouquette

10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

0 Answers