RE: MySQL (was Re: Notice about seconds overroll - S7K bug)

From: Rowan Kerr (rowanat_private)
Date: Mon Sep 17 2001 - 13:10:14 PDT

Next message: Katherine_Spanbauerat_private: "Re: Lotus Notes: File attachments may be extracted regardless of document security"

Previous message: Chris Fairbourne: "aa.com not encrypting customer transaction data"
Maybe in reply to: Dennis Murphy: "MySQL (was Re: Notice about seconds overroll - S7K bug)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

DM> (i.e. Make sure there's nothing but an integer coming in as a
parameter).
> One is to cast to int in PHP, like:
> $query="select * from my_table where id=".((int)$id);

It's a small point, but if you're using PHP, 
there is already an intval() function that can
be used to see if input really is an integer..
If you don't have a number, it returns 0.


--rowan

Next message: Katherine_Spanbauerat_private: "Re: Lotus Notes: File attachments may be extracted regardless of document security"
Previous message: Chris Fairbourne: "aa.com not encrypting customer transaction data"
Maybe in reply to: Dennis Murphy: "MySQL (was Re: Notice about seconds overroll - S7K bug)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Sep 17 2001 - 13:55:32 PDT