Question 1 of 111

Implement a secure site with ASP.NET

A SQL injection attack occurs when an application allows input submitted by the client to be run as part of a SQL command. What actions should a developer take to ensure that this doesn’t happen? (Choose all that apply)

Use Entity SQL because it does not suffer from the same risk.
Use Linq-to-Entities to access the database,
Use SQLParameters to submit the parameters.
Filter out keywords and symbols.