Reply to Re: [PHP] prevent user from getting scripts outside the web folder [this better?] — PHP

Posted by Marcus Bointon on 10/14/05 11:21

On 14 Oct 2005, at 04:48, David Robley wrote:

> That is incorrect. mysql_real_escape_string is a php function, not
> mysql.

Mostly true: mysql_real_escape_string is a php function, but it's
provided by the mysql extension as part of the mysql client libraries
(which explains the name). It doesn't do anything significantly
different to addslashes(), which is purely a PHP internal function.
If you are writing database independent code, you should probably
prefer addslashes (or things like adodb::qstr).

Marcus
--
Marcus Bointon
Synchromedia Limited: Putting you in the picture
marcus@synchromedia.co.uk | http://www.synchromedia.co.uk

[Back to original message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация