On Sun, Nov 12, 2006 at 03:02:32PM +0100, Mathieu Roy wrote: > Le Dimanche 12 Novembre 2006 14:49, Sylvain Beucler a écrit : > > Author: beuc > > Date: Sun Nov 12 14:49:21 2006 > > New Revision: 6274 > > > > URL: http://svn.gna.org/viewcvs/savane?rev=6274&view=rev > > Log: > > Add function descriptive comment > > "Escape a string so it can be included in an SQL query" > > > Isnt it the whole an only purpose of safeinput() ? If it is, why not updating > safeinput() ?
I used mysql_real_escape_string because it is meant to be used by MySQL. magic_quotes/addslashes is generic. For example, the SQL standard for quoting a single quote is '' not \' - therefore magic_quotes/addslashes is not directly meant for this. sane_input still can be used in other situations where quoting is needed (insert text in JavaScript strings etc.) If you don't like the name, no problem, please rename it. -- Sylvain _______________________________________________ Savane-dev mailing list Savane-dev@gna.org https://mail.gna.org/listinfo/savane-dev
