--- "Chris W. Parker" <[EMAIL PROTECTED]> wrote:
> Doesn't MySQL automatically protect against attacks like SQL
> injection? Or maybe it's that it automatically applies addslashes()?
Nope and nope.
What you might be thinking of is that mysql_query() only allows a single query
to be executed. This helps, but it doesn't prevent everything. It only prevents
SQL injection attacks that attempt to terminate the current query and execute
another one.
Chris
=====
My Blog
http://shiflett.org/
HTTP Developer's Handbook
http://httphandbook.org/
RAMP Training Courses
http://www.nyphp.org/ramp
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
