Unix Technical Forum

Preventing SQL injection

This is a discussion on Preventing SQL injection within the MySQL General forum forums, part of the MySQL category; --> I'm creating a forum in php where users are able to store comments in a text field (think blog ...


Go Back   Unix Technical Forum > Database Server Software > MySQL > MySQL General forum

Preventing SQL injection Preventing SQL injection

FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

 

LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 02-28-2008, 06:09 AM
Dotan Cohen
 
Posts: n/a
Default Preventing SQL injection
I'm creating a forum in php where users are able to store comments in
a text field (think blog comments). To prevent SQL injection, I'm
using the php function mysql_real_escape_string() on data going into
the text field. Is this really enough to be safe, or should I be doing
more?

Thanks in advance.

Dotan Cohen

http://what-is-what.com/what_is/bluetooth.html
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Reply

« When are subselects faster than Joins? | New FAQ in MySQL 5.0 and 5.1 Manuals »

Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On
Forum Jump


All times are GMT. The time now is 05:29 PM.

Contact Us - Unix Technical Forums - Top

Powered by vBulletin® Version 3.6.5
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Search Engine Optimization by vBSEO 3.2.0
www.UnixAdminTalk.com