Re: [PHP] Unexpected addslashes/stripslashes-behaviour?

2002-06-05 Thread Trond Arve Nordheim 

Quoting "1LT John W. Holmes" <[EMAIL PROTECTED]>:
> What are your settings for magic_quotes?
> magic_quotes_gpc
> magic_quotes_runtime

They're off.

Actually I just noticed that I didn't have to stripslashes() the data that came
out of the database myself.. don't know why, but I've always been sure I had to
use it.. ohwell, thanks :)

-- 
Trond Arve Nordheim
 - "This message has been ROT13-encrypted twice for extra security"

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Unexpected addslashes/stripslashes-behaviour?

2002-06-05 Thread 1LT John W. Holmes 

What are your settings for magic_quotes?

magic_quotes_gpc
magic_quotes_runtime

in your php.ini.

magic_quotes_gpc will automagically addslashes() to incoming GET, POST, and
COOKIE data. So you don't need to do it yourself. The defaults to On.

magic_quotes_runtime will autmagically addslashes() to data retrieved from a
database. This defaults to Off.

Also, note that you DO NOT have to stripslash data that comes out of a
database just because you used addslashes() on it when you inserted it. If
you have a string like "What's up with the " character" and you use
addslashes() on it (either automatic with magic_quotes, or manually), then
you'll have the string "What\'s up with the \" character" When you insert
that into the database, the \ character tells the database that the
character after it should be taken as a literal character and not the end of
the string. The actual \ doesn't go into the database. If you are seeing the
\ in your database, then  you are running addslashes() twice on your data.

HTH,

---John Holmes...


- Original Message -
From: "Trond Arve Nordheim" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, June 05, 2002 6:59 AM
Subject: [PHP] Unexpected addslashes/stripslashes-behaviour?


> I'm just having a little problem using addslashes/stripslashes here, and
I'm
> wondering if this actually is the expected behaviour:
>
> I get text from a form post, let's say "This sucks :\".
> I do $text = addslashes($_POST["fieldname"]); and stick $text in a DB.
>
> When I pull the text back out, and run stripslashes on the text, the
result is:
> "This sucks :".. the \ is gone...
>
> Is it supposed to do this? As far as I've seen I need stripslashes on data
from
> a DB already addslashed... so.. what's going on?
>
> --
> Trond Arve Nordheim
>  - "This message has been ROT13-encrypted twice for extra security"
>
> -
> This mail sent through IMP: http://horde.org/imp/
>
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
>


-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] Unexpected addslashes/stripslashes-behaviour?

2002-06-05 Thread Trond Arve Nordheim 

I'm just having a little problem using addslashes/stripslashes here, and I'm
wondering if this actually is the expected behaviour:

I get text from a form post, let's say "This sucks :\".
I do $text = addslashes($_POST["fieldname"]); and stick $text in a DB.

When I pull the text back out, and run stripslashes on the text, the result is:
"This sucks :".. the \ is gone...

Is it supposed to do this? As far as I've seen I need stripslashes on data from
a DB already addslashed... so.. what's going on?

-- 
Trond Arve Nordheim
 - "This message has been ROT13-encrypted twice for extra security"

-
This mail sent through IMP: http://horde.org/imp/

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php