Note (DATABASE)

Citation:
YouTube,. 'Mysql Database Tutorial - 1 - Introduction To Databases'. N. p., 2015.
W3schools.com,. 'SQL Injection'. N. p., 2015.
Owasp.org,. 'Preventing SQL Injection In Java - OWASP'. N. p., 2015
Dev.mysql.com,. 'Mysql :: Mysql 5.6 Reference Manual'. N. p., 2015.
YouTube,. 'What Is Database & SQL ?'. N. p., 2015.
Apress.com,. 'Expert Mysql'. N. p., 2015.
Support.microsoft.com,. 'Description Of The Database Normalization Basics'. N. p., 2015.

1.

The Source
Expert MySql MySQL remains one of the hottest
open source database technologies. As the database
has evolved into a product competitive with
proprietary counterparts like Oracle and IBM DB2,
MySQL has found favor with large scale corporate
users who require high-powered features and
performance. Expert MySQL is the first book to
delve deep into the MySQL architecture, showing
users how to make the most of the database
through creation of custom storage handlers,
optimization of MySQL's query execution, and use
of the embedded server product.

Response
It seems a good book to read and start on
my project but I will look for other
resources. If it really describes really
deep about MySQL, I will definitely
choose this book.

This is the MySQL Reference Manual. It

documents MySQL 5.6 through 5.6.25, as well as
MySQL Cluster releases based on versions 7.3 and
7.4 of NDB through 5.6.24-ndb-7.3.9 and 5.6.24ndb-7.4.6, respectively.

This is the place for all developers and

new learners who work with MySQL
database. MySQL team provide official
free documentation.

https://www.youtube.com/watch?v=KgiCxeZW8o&list=PL32BC9C878BA72085

I seems this is good video tutorial list

for MySQL because 524,129 people
watched.

SQL injection is a
code injection technique, used to attack datadriven applications, in which

It does not really relate to my search, but

It sounds really interesting. I want to
know about it more.

malicious SQLstatements are inserted into an entry

field for execution (e.g. to dump the database
contents to the attacker).
txtUserId = getRequestString("UserId");
txtSQL = "SELECT * FROM Users WHERE
UserId = " + txtUserId;
The example above, creates a select statement by
adding a variable (txtUserId) to a select string. The
variable is fetched from the user input (Request) to
the page.

It is easy to understand about SQL

injection because of this simple
example.
How to prevent SQL Injection?

This is interesting.
SQL Injection Based on 1=1 is Always True
https://www.youtube.com/watch?v=FR4QIeZaPeM Good answer for What is database?
Java Prepared Statements helps in defending
against SQL Injection, there are possibilities of
SQL Injection attacks through inappropriate usage
of Prepared Statements.

If I can use Java Prepared Statement

properly. I am able to prevent SQL
Injection.

Normalization is the process of organizing data in a Good information. I need to understand

database. This includes creating tables and
in order to design my database.
establishing relationships between those tables
according to rules designed both to protect the data
and to make the database more flexible by
eliminating redundancy and inconsistent
dependency.