Re: [PHP] prevent user from getting scripts outside the web folder [this better?] — PHP

You are here: Re: [PHP] prevent user from getting scripts outside the web folder [this better?] « PHP « IT news, forums, messages

Posted by John Nichel on 10/14/05 16:23

Marcus Bointon wrote:
> On 14 Oct 2005, at 04:48, David Robley wrote:
>
>> That is incorrect. mysql_real_escape_string is a php function, not
>> mysql.
>
>
> Mostly true: mysql_real_escape_string is a php function, but it's
> provided by the mysql extension as part of the mysql client libraries
> (which explains the name). It doesn't do anything significantly
> different to addslashes(), which is purely a PHP internal function. If
> you are writing database independent code, you should probably prefer
> addslashes (or things like adodb::qstr).

mysql_real_escape_string() takes into account the current characterset
of the database. addslashes() does not.

--
John C. Nichel
ÜberGeek
KegWorks.com
716.856.9675
john@kegworks.com

Navigation:

Next in forum: Re: [PHP] Trouble moving directory
Prev in forum: Question about including files and server load
Thread view: Re: [PHP] prevent user from getting scripts outside the web folder [this better?]

[Reply to this message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация