> If you are sanitizing _POST input for a database by escaping (via mysql_*), > is there a reason to use strip_tags()? If so, why and could you provide an > example?
Not really, as long as you're using something like mysql_real_escape_string(). Though if you're redisplaying it to your users (ie something like a forum) then you might want to use strip_tags() to get rid of any HTML. -- Richard Heyes http://www.phpguru.org -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
