Richard Lynch wrote:
If you had anything other than $_OCLEAN in an echo and friends, then you would know you were screwing up.
Personally, if I pull something info from the database, then I do not usually sanitize it. Yes, I know it's less secure, but I'm willing to take such (negligible) risk for extra performance. So I sanitize data on input only.
-- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
