On Mon, June 4, 2007 9:25 am, Dave M G wrote: > Since my database is MySQL, does that mean using addslashes() and > stripslashes()? In other words manually doing what magic quotes was > doing automatically? Please start reading here: http://phpsec.org And, for the record, no, addslashes is NOT the right answer for MySQL. -- Some people have a "gift" link here. Know what I want? I want you to buy a CD from some indie artist. http://cdbaby.com/browse/from/lynch Yeah, I get a buck. So? -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
