Thread: uft-8 encoding question
View Single Post
Old 03-02-2009, 03:59:22 AM     #12 (permalink)
Skinner

 
Skinner's Avatar
 
Join Date: Jul 2008
Location: Manchester
Posts: 2,507
Skinner has a reputation beyond reputeSkinner has a reputation beyond reputeSkinner has a reputation beyond reputeSkinner has a reputation beyond reputeSkinner has a reputation beyond reputeSkinner has a reputation beyond reputeSkinner has a reputation beyond reputeSkinner has a reputation beyond reputeSkinner has a reputation beyond reputeSkinner has a reputation beyond reputeSkinner has a reputation beyond repute
Add Slashes will stop most Injection Methods, real escape is just a more SQL geared method.

Even if you ran all 3 and a replacement, you can't say its safe as someone will find a way if they really want to, so just take basic steps

I personally use htmlentities only where allowing html input by anyone other than me, I use real escape or add slashes for none-html code.
__________________
Browse:
Skinner is offline