Hi,
On 10/12/05, Christopher Kings-Lynne <chriskl@xxxxxxxxxxxxxxxxxxx> wrote:
> I'm not 100% sure you need the pg_unescape_bytea - I thought that was
> already done automatically?
Yep, I agree. Furthermore, (un)escape routines will consume so much
system CPU. If you can, try to use parameters (pg_query_params() and
pg_send_params()) in any bytea/lo storage. This makes you free from
escaping without any potential SQL Injection threats.
Regards.
---------------------------(end of broadcast)---------------------------
TIP 1: if posting/reading through Usenet, please send an appropriate
subscribe-nomail command to majordomo@xxxxxxxxxxxxxx so that your
message can get through to the mailing list cleanly
