"Robert V. Zwink" wrote:

> Then when someone sends back the $unique_id by clicking on your link, you
> can instuct MySQL to disable the record:
> "UPDATE users SET send_email = 'NO' WHERE
> MD5(email_address.'ThisIsASecretKey123')=$unique_id "

    This works...with a small change (or is it a fix?):

    "UPDATE users SET send_email = 'NO' WHERE
     MD5(concat(email_address,'ThisIsASecretKey123'))='$unique_id' "

    Your example generates a syntax error.

    Thanks for the suggestion!

    PS:  Alternatively, I just stuck '$secret_key' in the query line, this way I
only have to change it in one location, and not have it hardcoded anywhere else.

W | I haven't lost my mind; it's backed up on tape somewhere.
  Ashley M. Kirchner <mailto:[EMAIL PROTECTED]>   .   303.442.6410 x130
  IT Director / SysAdmin / WebSmith             .     800.441.3873 x130
  Photo Craft Laboratories, Inc.            .     3550 Arapahoe Ave. #6
  http://www.pcraft.com ..... .  .    .       Boulder, CO 80303, U.S.A.

PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Reply via email to