> Secondly, what is best/favorite way to escape chars > for mysql? I know that mysql_real_escape_string() > has been recommended recently. But that brings up > the > issue of magic quotes. Would > set_magic_quotes_runtime(0) be a reliable way of > making sure my code runs with magic quotes off?
It's recommended to use mysql_real_escape_string() to eacape funky characters. Addslashes() does the same thing but as we are storing data in the database so it's better to offload it to the database. In future if database needs to escape another character then mysql_real_escape_string() will take care of it easily. > Thanks for your time, > Kathleen Hardik Doshi > -- > PHP General Mailing List (http://www.php.net/) > To unsubscribe, visit: http://www.php.net/unsub.php > __________________________________ Do you Yahoo!? Yahoo! Photos: High-quality 4x6 digital prints for 25¢ http://photos.yahoo.com/ph/print_splash -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
