On 09/12/2007, Mag. Wilhelm Braun <[EMAIL PROTECTED]> wrote:
> hi Markus,
Hi Wilhelm
> I just tried for fun:
>
> start = time.time()
> SQLString=('''SELECT * FROM entry, word, word_entry WHERE
> entry.id = word_entry.entry_id AND
> word.id = word_entry.word_id AND
> word.word GLOB '%s'
> ''' % "hui*")
>
> c.execute(SQLString)
>
> and it is as fast as your first one - seems a pysqlite problem to me
>
> I know they say this is not a secure way to do it -- well.
Your version does not use a prepared statement / bind variables. It
just forges the string and passes it to SQLite a one string, being
essentially the exact same query as the first one in my example.
Markus
-----------------------------------------------------------------------------
To unsubscribe, send email to [EMAIL PROTECTED]
-----------------------------------------------------------------------------
