(Choose 1 answer)
The most effective way of protecting against SQL injection is
A. whitelisting input (e.g. only allowing alphanumerical characters and spaces).
B. blacklisting strings such as "1 OR 1=1" and "UNION" from input.
C. using an intrusion detection system to detect attacks.
D. use of prepared statements or parametrized queries.
E. None of the other choices
Exit 20
