Re: [PHP] Escaping MySQL passwords necessary when md5 is used?

On Wed, Sep 21, 2011 at 22:36, Daniel Brown wrote: >    I should've specified, though, that then you would simply have the > fatal error message (call to undefined function) pass through, not the > unhashed original text. > Yes, that is obvious. -- Dotan Cohen http://gibberish.co.il http://wh

Re: [PHP] Escaping MySQL passwords necessary when md5 is used?

On Wed, Sep 21, 2011 at 15:32, Dotan Cohen wrote: > > The rebuild without md5 is an interesting point. That sounds exactly > like the type of it-will-never-happen-until-it-happens-to-me problems! > Thanks for the heads up. I should've specified, though, that then you would simply have the fat

Re: [PHP] Escaping MySQL passwords necessary when md5 is used?

Thanks Igor. I will sleep peacefully this night! -- Dotan Cohen http://gibberish.co.il http://what-is-what.com -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Escaping MySQL passwords necessary when md5 is used?

On Wed, Sep 21, 2011 at 21:03, Daniel Brown wrote: >    It never hurts to be overly cautious, but as MD5 hashes are > strictly alphanumeric (using hex characters), you won't have an issue > with injection with the code above.  That is, of course, unless your > version of PHP is rebuilt without MD5

Re: [PHP] Escaping MySQL passwords necessary when md5 is used?

If you're converting the input data in a md5 hash has no reason to scape it. Regards, Igor Escobar *Software Engineer * + http://blog.igorescobar.com + http://www.igorescobar.com + @igorescobar On Wed, Sep 21, 2011 at 2:53 PM, Dotan Cohen wrote: > I ha

Re: [PHP] Escaping MySQL passwords necessary when md5 is used?

On Wed, Sep 21, 2011 at 13:53, Dotan Cohen wrote: > I have an application in which the password is stored in the database > as md5(md5('passWord').'userSpecificSalt'). I'm checking the password > entered with: > $password=md5(  md5('$_POST['password']').'userSpecificSalt'  ); > $query="SELECT id F

Re: [PHP] Escaping '

On Jul 22, 2011, at 12:08 PM, Richard Quadling wrote: > On 22 July 2011 16:54, Daniel Brown wrote: >> On Fri, Jul 22, 2011 at 11:48, Floyd Resler wrote: >>> I did a fresh install of PHP on a new server. I had gotten used to PHP >>> automatically adding a backslash before single quotes when fo

Re: [PHP] Escaping '

On Jul 22, 2011, at 11:54 AM, Daniel Brown wrote: > On Fri, Jul 22, 2011 at 11:48, Floyd Resler wrote: >> I did a fresh install of PHP on a new server. I had gotten used to PHP >> automatically adding a backslash before single quotes when form data is >> submitted. It seems that is shut off

Re: [PHP] Escaping '

On 22 July 2011 16:54, Daniel Brown wrote: > On Fri, Jul 22, 2011 at 11:48, Floyd Resler wrote: >> I did a fresh install of PHP on a new server.  I had gotten used to PHP >> automatically adding a backslash before single quotes when form data is >> submitted.  It seems that is shut off in my ne

Re: [PHP] Escaping '

On Fri, Jul 22, 2011 at 11:48, Floyd Resler wrote: > I did a fresh install of PHP on a new server.  I had gotten used to PHP > automatically adding a backslash before single quotes when form data is > submitted.  It seems that is shut off in my new install.  How do I turn it > back on? Tha

RE: [PHP] Escaping JavaScript strings

> > This is a PHP function that escapes strings so you can output them as a > JS string. IIRC it assumes you're using single quotes to enclose your > strings. > > /** > * Function to appropriately escape a string so it can be output > * into javascript code. > * > * @p

Re: [PHP] Escaping JavaScript strings

> ... This is a PHP function that escapes strings so you can output them as a JS string. IIRC it assumes you're using single quotes to enclose your strings. /** * Function to appropriately escape a string so it can be output * into javascript code. * * @param string $stri

RE: [PHP] Escaping quotes for DB Entry

> From: Jochem Maas [mailto:[EMAIL PROTECTED] > Sent: Fri 26/05/2006 15:54 > > Brad Bonkoski wrote: > > All... > > A lot has been said recently about the dangers of the family of > > magic_quotes... > > I understand the dangers. > > The question is, for those of us using a database that does not

RE: [PHP] Escaping quotes for DB Entry

> From: Brad Bonkoski [mailto:[EMAIL PROTECTED] > Sent: Fri 26/05/2006 15:41 > > A lot has been said recently about the dangers of the family of > magic_quotes... > I understand the dangers. > The question is, for those of us using a database that does not have a > *real_escape_string function...O

Re: [PHP] Escaping quotes for DB Entry

Brad Bonkoski wrote: ... this adds single quotes automatically - addslashes (unless Im mistaken - wouldnt be the first time) would add slashes (and not single quotes) which is not what you want. Only done automatically IFF magic_quotes_gpc is ALSO on, which in my case it is off. excerp

Re: [PHP] Escaping quotes for DB Entry

Jochem Maas wrote: Brad Bonkoski wrote: Jochem Maas wrote: ... Understood what the esacpe character needs to be...the question is the best way to get it there? Currently I have: magic_quotes_sybase = On this adds single quotes automatically - addslashes (unless Im mistaken - wou

Re: [PHP] Escaping quotes for DB Entry

Brad Bonkoski wrote: Jochem Maas wrote: ... Understood what the esacpe character needs to be...the question is the best way to get it there? Currently I have: magic_quotes_sybase = On this adds single quotes automatically - addslashes (unless Im mistaken - wouldnt be the first time) w

Re: [PHP] Escaping quotes for DB Entry

Brad Bonkoski wrote: All... A lot has been said recently about the dangers of the family of magic_quotes... I understand the dangers. The question is, for those of us using a database that does not have a *real_escape_string function...Oracle for example. What is the *best* way to escape quot

Re: [PHP] Escaping quotes for DB Entry

Jochem Maas wrote: Brad Bonkoski wrote: All... A lot has been said recently about the dangers of the family of magic_quotes... I understand the dangers. The question is, for those of us using a database that does not have a *real_escape_string function...Oracle for example. What is the *

Re: [PHP] Escaping quotes for DB Entry

Brad Bonkoski wrote: All... A lot has been said recently about the dangers of the family of magic_quotes... I understand the dangers. The question is, for those of us using a database that does not have a *real_escape_string function...Oracle for example. What is the *best* way to escape quot

Re: [PHP] Escaping double quotes

Not sure I understand your question correctly. I think you can just use soemthing like: echo ''; Mindaugas L wrote: or heredeoc syntax :) On 5/25/06, John Nichel <[EMAIL PROTECTED]> wrote: Pavleck, Jeremy D. wrote: > So I'm writing this page (PHP Newbie here) and it checks to see if a var

Re: [PHP] Escaping double quotes

or heredeoc syntax :) On 5/25/06, John Nichel <[EMAIL PROTECTED]> wrote: Pavleck, Jeremy D. wrote: > So I'm writing this page (PHP Newbie here) and it checks to see if a var > is set, if it isn't it spits out the form info like so: echo " action="myform.php" method="post">"; > Now is there a wa

Re: [PHP] Escaping double quotes

Pavleck, Jeremy D. wrote: So I'm writing this page (PHP Newbie here) and it checks to see if a var is set, if it isn't it spits out the form info like so: echo ""; Now is there a way to 'wrap' that so I don't have to escape quotes? Something like perls 'qq' function is what I'm looking for. I tr

Re: [PHP] Escaping double quotes

> So I'm writing this page (PHP Newbie here) and it checks to see if a var > is set, if it isn't it spits out the form info like so: echo " action="myform.php" method="post">"; > Now is there a way to 'wrap' that so I don't have to escape quotes? > Something like perls 'qq' function is what I'm lo

Re: [PHP] Escaping double quotes

On 25/05/06, Pavleck, Jeremy D. <[EMAIL PROTECTED]> wrote: So I'm writing this page (PHP Newbie here) and it checks to see if a var is set, if it isn't it spits out the form info like so: echo ""; Now is there a way to 'wrap' that so I don't have to escape quotes? Something like perls 'qq' funct

RE: [PHP] escaping quotes

What also works is this: print 'value="'. $foo['bar'] . '"'; Read the manual section on strings: http://php.net/types.string Regards, Philip On Thu, 27 Jan 2005, Giles wrote: > Thanks, that works great. > > Knew that worked for JavaScript but didn't know it worked for PHP. > > > print("v

RE: [PHP] escaping quotes

p.net Subject: Re: [PHP] escaping quotes John Holmes wrote: > print("value="\" . $attributes["messageSubject"] . "\""); Slight typo there: "value=\"" . ... -- Like Music? http://l-i-e.com/artists.htm -- PHP General Mailing List (http://ww

Re: [PHP] escaping quotes

John Holmes wrote: > print("value="\" . $attributes["messageSubject"] . "\""); Slight typo there: "value=\"" . ... -- Like Music? http://l-i-e.com/artists.htm -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] Re: [ParrotHeadPoster] - Re: [PHP] escaping quotes

Jochem Maas wrote: I had a parrot idea whilst writing this.. (see bottom) ... --- ParrotTalk: I think that this topic of string interpolation/quotes deserves 'parrot' attention which made me think that maybe the parrot could parse for markers (that if added to an email by an autorized poster) w

Re: [PHP] escaping quotes

Giles wrote: Hi Guys Really simple question. How do I change the following: print("value='" . $attributes["messageSubject"] . "'"); to have double quotes around the subject field instead. i.e.: print("value="" . $attributes["messageSubject"] . """); print("value="\" . $attributes["messageSubject"]

RE: [PHP] escaping quotes

> Hi Guys > > Really simple question. How do I change the following: > > print("value='" . $attributes["messageSubject"] . "'"); > > to have double quotes around the subject field instead. i.e.: > > print("value="" . $attributes["messageSubject"] . """); > Simple: Print ("value=\""{$attribut

RE: [PHP] escaping quotes

To view the terms under which this email is distributed, please go to http://disclaimer.leedsmet.ac.uk/email.htm On 27 January 2005 12:14, Giles wrote: > Hi Guys > > Really simple question. How do I change the following: > > print("value='" . $attributes["messageSubject"] . "'"); > > to hav

[PHP] [ParrotHeadPoster] - Re: [PHP] escaping quotes

I had a parrot idea whilst writing this.. (see bottom) Giles wrote: Hi Guys Really simple question. How do I change the following: print("value='" . $attributes["messageSubject"] . "'"); to have double quotes around the subject field instead. i.e.: print("value="" . $attributes["messageSubject"] .

[PHP] Re:[PHP] escaping quotes

Hi, Try this print("value=\"" . $attributes["messageSubject"] . "\""); Binoy __ __ __ __ Sent via the WebMail system at softwareassociates.co.uk --- Scanned by MessageExchange.net (12:54:20 SPITFIRE) -- PHP Ge

Re: [PHP] Escaping Regex Chars with addcslashes()

* and then Marek Kilimajer declared > >If i want to find a url on a page, there are some chars i need to escape > >right? > > > >like '/' and '?' > > > >do i also need to escape '.'? > >Are there any other things that might pop up in a url that I can escape > >with addcslashes()? > Don't use

Re: [PHP] Escaping Regex Chars with addcslashes()

Nick Wilson wrote: Hi all, If i want to find a url on a page, there are some chars i need to escape right? like '/' and '?' do i also need to escape '.'? Are there any other things that might pop up in a url that I can escape with addcslashes()? Much thanks Don't use posix regexp, but use per

RE: [PHP] Escaping quotes [solution]

[snip] 2) By not escaping quotes in the data ... You can do it this way but you must make sure that any strings in your values array have been escaped before with [/snip] There is no quotes in the data. The data coming in is a $_POST array. $dbmssql->dbinsert($_POST, $table); However this did

Re: [PHP] Escaping quotes

On Thu, 12 Aug 2004 12:34:30 +1000, Tom Rogers <[EMAIL PROTECTED]> wrote: > Hi, > > Thursday, August 12, 2004, 10:03:32 AM, you wrote: > AH> Hi All, > > AH> I have this expression; > AH> $query = "INSERT INTO $table (%s) VALUES (%s)"; > AH> $query = sprintf($query, implode("

Re: [PHP] Escaping quotes

Hi, Thursday, August 12, 2004, 10:03:32 AM, you wrote: AH> Hi All, AH> I have this expression; AH> $query = "INSERT INTO $table (%s) VALUES (%s)"; AH> $query = sprintf($query, implode(",", $fld), implode(",", AH> $val)); AH> $result = mssql_query($query) or die($er

Re: [PHP] Escaping quotes

On Wed, 11 Aug 2004 19:03:32 -0500, Alex Hogan <[EMAIL PROTECTED]> wrote: > Hi All, > > I have this expression; > $query = "INSERT INTO $table (%s) VALUES (%s)"; > $query = sprintf($query, implode(",", $fld), implode(",", > $val)); > $result = mssql_quer

Re: [PHP] Escaping php content output for valid html

On Friday 16 April 2004 20:19, Merlin wrote: > hmm so you would suggest to save the entitty code directly to the database > in the first place? If the data is mainly displayed as HTML then yes, store the HTML entities and do a conversion when you want plain text or whatever. > What happens if

Re: [PHP] Escaping php content output for valid html

Lowell Allen wrote: On Apr 16, 2004, at 3:40 AM, Merlin wrote: Hi there, I am just validating html generated by a php page. There is an error which comes up if ther is a dash in the content text. Those characters come out of a database. Is there a command in php which is escaping those charact

Re: [PHP] Escaping php content output for valid html

On Apr 16, 2004, at 3:40 AM, Merlin wrote: Hi there, I am just validating html generated by a php page. There is an error which comes up if ther is a dash in the content text. Those characters come out of a database. Is there a command in php which is escaping those characters for valid html o

Re: [PHP] escaping ' when inside a " "

Curt Zirzow wrote: Don't you want to do: $sql = "select subject from subwhile where subject LIKE '%$var[0]%'"; I think more precisely: $sql = "select subject from subwhile where subject LIKE '%{$var[0]}%'"; Either will work, as will $sql = "... subject LIKE '%$var[string_index]%'"; -- PHP General

Re: [PHP] escaping ' when inside a " "

* Thus wrote Marek Kilimajer ([EMAIL PROTECTED]): > Adam Williams wrote: > >If I have the SQL statement: > > > >$sql = "select subject from subwhile where subject = '*$var[0]*'"; > > Don't you want to do: > $sql = "select subject from subwhile where subject LIKE '%$var[0]%'"; I think more precise

Re: [PHP] escaping ' when inside a " "

Yeah thats what I meant to do, my PHP is very rusty if you can't tell (and so is my SQL) :) Jay Blanchard wrote: [snip] If I have the SQL statement: $sql = "select subject from subwhile where subject = '*$var[0]*'"; Don't you want to do: $sql = "select subject from subwhile where subject LIK

RE: [PHP] escaping ' when inside a " "

[snip] > If I have the SQL statement: > > $sql = "select subject from subwhile where subject = '*$var[0]*'"; Don't you want to do: $sql = "select subject from subwhile where subject LIKE '%$var[0]%'"; [/snip] Not if the variable is exactly what he is looking for. -- PHP General Mailing List (ht

Re: [PHP] escaping ' when inside a " "

Adam Williams wrote: If I have the SQL statement: $sql = "select subject from subwhile where subject = '*$var[0]*'"; Don't you want to do: $sql = "select subject from subwhile where subject LIKE '%$var[0]%'"; -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.n

Re: [PHP] escaping ' when inside a " "

Adam -- ...and then Adam Williams said... % % If I have the SQL statement: % % $sql = "select subject from subwhile where subject = '*$var[0]*'"; % % do I need to put a \ before each '? 1) You should have just tried it. 2) No. You owe the Newbie Guide a paragraph on quoting and escaping. H

RE: [PHP] Escaping the " ' " character

*chuckle* this explains your responses to me. In this new light I apologize for my condescending responses. Cheers, Rob. On Thu, 2003-09-11 at 20:17, Dan Anderson wrote: > > You've completely misread and misinterpreted Robert's comments. He > > didn't say he didn't want to read posts he wasn't i

RE: [PHP] Escaping the " ' " character

> You've completely misread and misinterpreted Robert's comments. He > didn't say he didn't want to read posts he wasn't interested in and he > didn't ask the poster to not post things he wasn't interested in > reading. He DID however request that people not send html emails to the > list. Oh wait

RE: [PHP] Escaping the " ' " character

Dan Anderson on Wednesday, September 10, 2003 5:17 PM said: > If you don't like somebodys post just ignore it. I'd bet your 2 cents > that you don't find every post to this list interesting. Do you reply > to those people and ask them to not post stuff that doesn't

Re: [PHP] Escaping the " ' " character

Funny, I could swear I made a comment about bandwidth not topic. You should go read my original message, then read the guidelines, then wonder to yourself if you are all alone in this world -- if you by chance find that you're not in your own little world, perhaps you see why guidelines posted for

Re: [PHP] Escaping the " ' " character

> I believe the general posting guidelines discourage posting HTML to > mailing lists, and to be quite honest many of us pay for our bandwidth > and don't need your 8k image eating up resources. If you don't like somebodys post just ignore it. I'd bet your 2 cents that you don't find every post t

Re: [PHP] Escaping the " ' " character

Try this   $url="";echo "asd";?>  HTH -Murugesan - Original Message - From: Todd Cary To: [EMAIL PROTECTED] Sent: Wednesday, September 10, 2003 10:57 PM Subject: [PHP] Escaping the " ' " character I need to print the following:http://www.gilardi.com/pdf/gwy

Re: [PHP] Escaping the " ' " character

I believe the general posting guidelines discourage posting HTML to mailing lists, and to be quite honest many of us pay for our bandwidth and don't need your 8k image eating up resources. 2 cents, Rob. On Wed, 2003-09-10 at 13:27, Todd Cary wrote: > I need to print the following: > > onClick="

Re: [PHP] Escaping the " ' " character

>I need to print the following: > >onClick="MM_openBrWindow('http://www.gilardi.com/pdf/gwyt1poc.pdf','','')" > >and I am not sure how to escape the " ' " characters. with a slash. http://www.google.com/search?&q=php+single+quote+escape+site%3Aphp.net -

Re: [PHP] Escaping nasty quotes

On Thu, 2003-07-31 at 14:31, Roy W wrote: > I have this: > > $query = "LOAD DATA LOCAL INFILE '/home/data.txt' INTO TABLE mytable FIELDS > TERMINATED BY ',' ENCLOSED BY '" . '"' . "' "; > $result = MYSQL_QUERY($query); > PRINT "$query2"; > > The query doesn't take ... but if I cut and paste the

RE: [PHP] Escaping nasty quotes

> I have this: > > $query = "LOAD DATA LOCAL INFILE '/home/data.txt' INTO TABLE > mytable FIELDS > TERMINATED BY ',' ENCLOSED BY '" . '"' . "' "; > $result = MYSQL_QUERY($query); > PRINT "$query2"; > > The query doesn't take ... but if I cut and paste the printed > response into > the mysql server

RE: [PHP] Escaping nasty quotes

[snip] Unfortunately, they are indeed enclosed by double quotes [/snip] Can you show us a snippet of data.txt? -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

RE: [PHP] Escaping nasty quotes

Unfortunately, they are indeed enclosed by double quotes Roy -Original Message- From: Jay Blanchard [mailto:[EMAIL PROTECTED] Sent: Thursday, July 31, 2003 12:58 PM To: Roy W; [EMAIL PROTECTED] Subject: RE: [PHP] Escaping nasty quotes [snip] Sorry...Because of the double quote near

RE: [PHP] Escaping nasty quotes

[snip] Sorry...Because of the double quote near the ENCLOSED BY .. It delivers a PARSE ERROR $query = "LOAD DATA LOCAL INFILE '/home/data.txt' INTO TABLE mytable FIELDS TERMINATED BY ',' ENCLOSED BY '"' "; [/snip] Are the fields enclosed by a quote? If not... $query = "LOAD DATA LOCAL INFILE '/h

RE: [PHP] Escaping nasty quotes

PROTECTED] Subject: Re: [PHP] Escaping nasty quotes --- Roy W <[EMAIL PROTECTED]> wrote: > The query doesn't take ... but if I cut and paste the printed response > into the mysql server manually ... works like a charm http://www.php.net/addslashes Chris = Become a better

RE: [PHP] Escaping nasty quotes

Sorry...Because of the double quote near the ENCLOSED BY .. It delivers a PARSE ERROR ? -Original Message- From: Jay Blanchard [mailto:[EMAIL PROTECTED] Sent: Thursday, July 31, 2003 12:38 PM To: Roy W; [EMAIL PROTECTED] Subject: RE: [PHP] Escaping nasty quotes [snip] $query = "

Re: [PHP] Escaping nasty quotes

--- Roy W <[EMAIL PROTECTED]> wrote: > The query doesn't take ... but if I cut and paste the printed > response into the mysql server manually ... works like a charm http://www.php.net/addslashes Chris = Become a better Web developer with the HTTP Developer's Handbook http://httphandbook.org

RE: [PHP] Escaping nasty quotes

[snip] $query = "LOAD DATA LOCAL INFILE '/home/data.txt' INTO TABLE mytable FIELDS TERMINATED BY ',' ENCLOSED BY '" . '"' . "' "; {/snip] try ... $query = "LOAD DATA LOCAL INFILE '/home/data.txt' INTO TABLE mytable FIELDS TERMINATED BY ',' ENCLOSED BY '"' "; The period concats were not needed.

RE: [PHP] escaping quotes for redisplay

> -Original Message- > From: Erik Price [mailto:[EMAIL PROTECTED]] > Sent: 18 February 2003 18:11 > > PS: I am using htmlentities() on the output before displaying > it in the > browser, but it doesn't apply to singlequotes. Ahem! I quote from http://www.php.net/manual/en/function.html

Re: [PHP] escaping quotes for redisplay

On Tue, 18 Feb 2003 13:10:33 -0500, you wrote: > -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

RE: [PHP] Escaping Chars

> Thanks for the reply, but I still can't seem to make the connection... > If I enter the value > 123\"/' > in a web form and put the form post value directly into the db (no > stripslashes or any other function), the value as reported by the db at a > command line query is > 123\"/' That's not ri

RE: [PHP] Escaping Chars

ers, REMOTE_HOST tests for dynamic links or doing form-to-email type stuff. Entering data INTO a db adds a whole new set of challenges. I'd appreciate any other advice or clarification you could offer. Thanks, -Original Message- From: John W. Holmes [mailto:[EMAIL PROTECTED]] Sen

RE: [PHP] Escaping Chars

> I need to get a password value from a form, store it in a database and > then > later be able to compare a login password to the one stored in the db. > This works great unless the password contains the '\' char. > magic_quotes_gpc is ON and magic_quotes_runtime is OFF. > As a klude, I tried just

Re: [PHP] escaping quotes in mail() message

> From: "1LT John W. Holmes" <[EMAIL PROTECTED]> > >> I'm having a problem escaping double quotes in email messages sent with >> mail(). The message is built as a string and assigned to a variable and > the >> variable name is passed to the mail function. >> >> The double quotes appear correctly

Re: [PHP] escaping quotes in mail() message

> I'm having a problem escaping double quotes in email messages sent with > mail(). The message is built as a string and assigned to a variable and the > variable name is passed to the mail function. > > The double quotes appear correctly in a simple test like this: > $message = "This message uses

RE: [PHP] Escaping '#' Sign

>-Original Message- >From: Mike Smith > >Is this fundamentally flawed? You mentioned "...is probably invalid in >itself, but we'll come to that." Were you referring to the space or the >whole pasing of array variables in an URL. Yup, I meant the spaces, not the whole concept -- when I wrot

RE: [PHP] Escaping '#' Sign

ht direction! Mike Smith -Original Message- From: Ford, Mike [LSS] [mailto:[EMAIL PROTECTED]] Sent: Friday, December 13, 2002 4:22 AM To: 'Mike Smith'; PHP General Subject: RE: [PHP] Escaping '#' Sign > -Original Message- > From: Mike Smith [mailto:[EMAIL P

RE: [PHP] Escaping '#' Sign

> -Original Message- > From: Mike Smith [mailto:[EMAIL PROTECTED]] > Sent: 12 December 2002 14:47 > > Rendered results of = > > http://company.com/custmaint.php?id=70&class=&cust=company > T/T #29&type=OEM > > id is the record id > class is Null so that's OK. > cust=company T/T #29 > t

RE: [PHP] Escaping '#' Sign

hard Baskett [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 11, 2002 3:57 PM To: Mike Smith; PHP General Subject: Re: [PHP] Escaping '#' Sign Why don't you just try: $cust2 = str_replace('#','#',$cust); That should replace all instances of # with it's

Re: [PHP] Escaping '#' Sign

Have to be a bit more specific, cause I can't reproduce your problem... Do you have some code examples that show it clearer? name for client is "COMPANY #1" in DB name; echo "This is the name: $name"; ?> Output: This is the name: COMPANY #1 A # sign is just another character in HTML, and all

Re: [PHP] Escaping '#' Sign

Why don't you just try: $cust2 = str_replace('#','#',$cust); That should replace all instances of # with it's html entity equivalent. If that doesn¹t work then there is something else wrong with your script and we'll need to see it all! :) Rick "People who drink to drown their sorrow should be

Re: [PHP] Escaping characters won't work

Hello, "Ernest E Vogelsinger" <[EMAIL PROTECTED]> wrote: > At 23:53 14.11.2002, Lars Espelid said: > [snip] > >Try to execute this code: > >if (ereg[^0-9], $num)) > >print "That's not a number!"; > > > >result: parsing error, expects ')' on the if-line.

Re: [PHP] Escaping characters won't work

At 23:53 14.11.2002, Lars Espelid said: [snip] >Try to execute this code: >if (ereg[^0-9], $num)) >print "That's not a number!"; > >result: parsing error, expects ')' on the if-line. You forgot an opening bracket, and need to quote the regex, like if

Re: [PHP] Escaping characters won't work

Hello again... Lars Espelid wrote: Hello, I'm running Apache 1.3.26, PHP 4.0.5 and WinXPpro. My problem is as follows: Try to execute this code: if (ereg[^0-9], $num)) print "That's not a number!"; result: parsing error, expects ')' on the if-line. This one does have a parse error

Re: [PHP] Escaping escaped chars

One of the guys over on the php-db list told me that to store the binary string correctly in postrgresql, that I would have to double quote whats already there. So in essence, by the time it hits the database, it has to be -> \\\0PZ\\\0<Îê˜Úµ Any suggestions to modify the string like this... M

Re: [PHP] Escaping escaped chars

Just escape the \ with a single escape character. eg. your string '\0PZ\0<Îê˜Úµ' would end up as '\\0PZ\\0<Îê˜Úµ' - each \ simply escapes the backslash following it. If you add two backslashes, you end up with one too many which is what the error is referring to. ..micahel.. On Thu, 2002-06

Re: [PHP] escaping quotes in forms and redisplaying variables in form fields

e how the 'O' is taken as the string, and the rest is ignored. Same for the double quotes. ---John Holmes... - Original Message - From: "Robert Cummings" <[EMAIL PROTECTED]> To: "John Hughes" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Se

Re: [PHP] escaping quotes in forms and redisplaying variables in form fields

See: http://www.php.net/manual/en/function.htmlspecialchars.php John Hughes wrote: > > I'm stumbling over how to allow people to put single or double quotes > in a form text field. > > I am passing the form to itself ($PHP_SELF) and on the second time > through previewing what the form data wil

Re: [PHP] Escaping Quotes in a String and Ending With A Quote

*screams, "I'm such a newbie!!"* I didn't know I had to declare $PHP_SELF with "global" before using it inside a function. Sorry! Works now! Thanks very much! =) "Miguel Cruz" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Are you inside a function, having negl

Re: [PHP] Escaping Quotes in a String and Ending With A Quote

Are you inside a function, having neglected to do global $PHP_SELF; ? miguel On Tue, 19 Mar 2002, Dr. Shim wrote: > Strangley enough, $PHP_SELF is empty. Nothing appears when I do it the way > Bob and you suggested, the "action" property equals "". > > "Miguel Cruz" <[EMAIL PROTECTED]> wrot

Re: [PHP] Escaping Quotes in a String and Ending With A Quote

Strangley enough, $PHP_SELF is empty. Nothing appears when I do it the way Bob and you suggested, the "action" property equals "". "Miguel Cruz" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... On Tue, 19 Mar 2002, Dr. Shim wrote: > Hmmm. How about this? > > echo

Re: [PHP] Escaping Quotes in a String and Ending With A Quote

On Tue, 19 Mar 2002, Dr. Shim wrote: > Hmmm. How about this? > > echo " . "\">"; You're concatenating "echo $PHP_SELF" rather than just $PHP_SELF, which isn't necessarily helping. But just between me and you, life would be a lot easier if you simply did: echo ''; miguel -- PHP General Mai

Re: [PHP] Escaping Quotes in a String and Ending With A Quote

You need to remove the second echo. On Tue, 19 Mar 2002, Dr. Shim wrote: > Hmmm. How about this? > > echo " . "\">"; > > > "Miguel Cruz" <[EMAIL PROTECTED]> wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > On Tue, 19 Mar 2002, Dr. Shim wrote: > > Well, this is a fairly simpl

Re: [PHP] Escaping Quotes in a String and Ending With A Quote

Hmmm. How about this? echo ""; "Miguel Cruz" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... On Tue, 19 Mar 2002, Dr. Shim wrote: > Well, this is a fairly simple problem. I'm having problems with escaping a > string, and then ending the string right after the e

Re: [PHP] Escaping Quotes in a String and Ending With A Quote

On Tue, 19 Mar 2002, Dr. Shim wrote: > Well, this is a fairly simple problem. I'm having problems with escaping a > string, and then ending the string right after the escape! For example, > > echo "Then Johnathan said, \"That's exactly what I said!\""; > > I get a parse error on the line where t

RE: [PHP] escaping ?>

PM > To: 'Steven Jarvis'; [EMAIL PROTECTED] > Subject: RE: [PHP] escaping ?> > > > what about this? > > $contents = str_replace('', '', $contents); > > > -Original Message- > From: Steven Jarvis [mailto:[EMAIL PROTECTED]]

RE: [PHP] escaping ?>

what about this? $contents = str_replace('', '', $contents); -Original Message- From: Steven Jarvis [mailto:[EMAIL PROTECTED]] Sent: Saturday, February 09, 2002 8:46 AM To: [EMAIL PROTECTED] Subject: [PHP] escaping ?> I'm trying to do some string replaces on XML files to import them i

Re: [PHP] escaping ?>

Hi, try this: str_replace("" Jeff At 03:45 PM 2/8/2002 -0600, Steven Jarvis wrote: >I'm trying to do some string replaces on XML files to import them into a >prprietary db that doesn't understand XML. > >I need to strip the XML tags out of the file. > >However, when I use this line: > >$co

Re: [PHP] Escaping from "<"

on 5/16/01 9:12 PM, Augusto Cesar Castoldi at [EMAIL PROTECTED] wrote: > I'm tring to print the variable "tmp", but the echo is just printing "abcd", > the rest he can't print. > > Why? > > regards, > > Augusto > > $tmp="abcd echo $tmp.""; > echo ""; > $tmp=addslashes($tmp); > echo $tmp.""; >

Re: [PHP] Escaping Characters

My previous post is a bit misleading. ""Wade"" <[EMAIL PROTECTED]> wrote in message 9c6dcb$h8e$[EMAIL PROTECTED]">news:9c6dcb$h8e$[EMAIL PROTECTED]... > Aside from " (quotes), which HTML characters should be preceded with a \ > (backslash) to avoid parsing errors? No and Yes. NO: You don't have

RE: [PHP] Escaping Characters

" double quotes ' single quotes (yes, they are used quite often) \ backslash (JavaScripts etc.) there are your enemies, nothing else. forget about + = & $ ... Sincerely, Maxim Maletsky Founder, Chief Developer PHPBeginner.com (Where PHP Begins) [EMAIL PROTECTED] www.phpbeginner.co

Re: [PHP] Escaping Characters

""Wade"" <[EMAIL PROTECTED]> wrote in message 9c6dcb$h8e$[EMAIL PROTECTED]">news:9c6dcb$h8e$[EMAIL PROTECTED]... > Aside from " (quotes), which HTML characters should be preceded with a \ > (backslash) to avoid parsing errors? No. > > I have the following, which I have in an .inc file outside my

  1   2   >