Reply to Re: _GET['name'] truncates — PHP Programming Language

Posted by Toby A Inkster on 02/06/07 06:45

Jerry Stuckle wrote:

> Don't be dense, Tony. This is obviously some debug code. In the real
> code he would be opening the connection and executing the sql.

That's your assumption.

My assumption is that in the real code, *if* he opened a connection to the
database, then he'd be sure to authenticate the user first, by at least
username/password and preferably IP address too.

Besides which, there are perfectly good reasons you might want to pass a
SQL query to a script that does not execute it. For example:

http://developer.mimer.com/validator/
http://www.phpclasses.org/browse/package/1484.html

--
Toby A Inkster BSc (Hons) ARCS
Contact Me ~ http://tobyinkster.co.uk/contact
Geek of ~ HTML/CSS/Javascript/SQL/Perl/PHP/Python*/Apache/Linux

* = I'm getting there!

[Back to original message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация