The best way to protect SQL injection? — PHP Programming Language

You are here: The best way to protect SQL injection? « PHP Programming Language « IT news, forums, messages

Posted by Alucard on 12/26/06 11:50

Hi all.

I would like to ask if Regular expression is the best way to deal with
SQL injection attack, and no mysql_real_escape_string() is used:

if(preg_match("[A-Za-z0-9](4,6)")){
print "Success!";
}

In the above example, only character and digit are allowed. Other
injection technique is no used.

Is it correct? Did I make any foolish assumptions or mistakes? Please
let me know.

Thank you very much.

Navigation:

Next in forum: Re: ROUND
Prev in forum: Re: Help in understanding php
Thread view: The best way to protect SQL injection?

[Reply to this message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация