Posted by Jerry Stuckle on 11/15/06 01:54

Auddog wrote:
> "BKDotCom" <bkfake-google@yahoo.com> wrote in message
> news:1163551393.118252.128020@h54g2000cwb.googlegroups.com...
>
>>like I said: mysqli_real_escape_string()
>>
>>
>>Auddog wrote:
>>
>>>I have a project description section on my form and I want to make sure
>>>that
>>>anyone who using apostrophe be able to insert the data without causing an
>>>sql error. Is there a better way?
>>>
>>>A
>>>
>>>
>>>"BKDotCom" <bkfake-google@yahoo.com> wrote in message
>>>news:1163543050.263661.222760@i42g2000cwa.googlegroups.com...
>>>
>>>>Auddog wrote:
>>>>
>>>>>I'm a little confused on (...) htmlspecialchar.
>>>>
>>>>htmlspecialchar is for ... HTML
>>>>how about using it when creating html?
>>>>Why store special chars in the DB as apposed to plain ol text?
>>>>
>>>>Maybe you're really interested in mysqli_real_escape_string ?
>>>>
>>
>
>
> where do you use this command?
>
>

(Top posting fixed)

http://us2.php.net/manual/en/function.mysql-real-escape-string.php

And please don't top post.

--
==================
Remove the "x" from my email address
Jerry Stuckle
JDS Computer Training Corp.
jstucklex@attglobal.net
==================

[Back to original message]