On 23/01/2008, Chris <[EMAIL PROTECTED]> wrote: > > I'm not accepting "--" at all until someone can show me a real world > > case where one would use it, without the intention of SQL injection. > > How can it be escaped, anyway? > > Depends on your app. > > -- is an accepted things in emails as a marker for signatures.
You win that one. > Also in mysql_query ; is automatically handled, you can't send multiple > queries to mysql_query and have them execute. > > mysql_query() sends an unique query (multiple queries are not supported) Very nice to know this. Thanks. Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing?
