I'm using php/oracle for a short time now. I'm forced to work on
server where the following configuration is used:


magic_quotes_gpc        = on
magic_quotes_runtime    = off
magic_quotes_sybase     = off

After my first INSERT into oracle with arbitrary returned from a
post form I got bitten by special characters like ', " and \.
They were all escaped with \, too. But this broke my INSERTS
because ' needs to be escapde with ' so it looks like '' when the
acutal insert happens.

As far as my testing goes, no other character needs escaping, no
'\' needs; just the '.

Retrieving data withing SELECT results in getting back the data
WITH backslashes in them.

After settigns magic_quotes_sybase = on, I couldn't believe it.
Everything worked; from now one only ' was escaped to '', no
other character.

With the first configuration, every data coming from post forms
needed to be processed with the following sequence:

        $input = stripslashes( $input);
        $input = str_replace( "'", "''", $input);

After activating magic_quotes_sybase, the above is not needs
anymore as the are allready escaped the right way.

Has someone had such troubles too, or are there better ways of
doing that ?

Does someone know if the following configuration

magic_quotes_gpc        = on
magic_quotes_runtime    = off
magic_quotes_sybase     = on

has some known issues about php stability or other problems
arising with it ? (I was told so without getting more in depth
information why or what)

thanks for sharing ideas,


Markus Fischer,  http://josefine.ben.tuwien.ac.at/~mfischer/
EMail:         [EMAIL PROTECTED]
PGP Public  Key: http://josefine.ben.tuwien.ac.at/~mfischer/C2272BD0.asc
PGP Fingerprint: D3B0 DD4F E12B F911 3CE1  C2B5 D674 B445 C227 2BD0

PHP Database Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]

Reply via email to