Hello Andy, Thursday, March 25, 2004, 1:17:54 PM, you wrote:
AB> yup and believe it or not if($result) only returns true if a valid AB> username/password row can be found otherwise it returns a non existing AB> resource Absolutely fascinating, I have never seen a MySQL server behave like this. Could you post which version of MySQL you're using and perhaps the MySQL part of phpinfo()? There must be something *somewhere* that controls this behaviour. All I can say for certainty is that if I uploaded your code onto my web host, it'd fail. So long as you're building this in a controlled environment and you know where it's going to go when it's live, then I guess you can exploit this to its full potential. -- Best regards, Richard Davey http://www.phpcommunity.org/wiki/296.html -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
