sql injection and php

From: Jacek Lach (jlachat_private)
Date: Tue May 28 2002 - 16:56:22 PDT

Next message: Mike Smith: "RE: Verizon Call Intercept"

Previous message: mikedat_private: "Re: DirectX 9 SDK, Microsoft have got balls...."
Next in thread: Sverre H. Huseby: "Re: sql injection and php"
Reply: Sverre H. Huseby: "Re: sql injection and php"
Reply: Florian Weimer: "Re: sql injection and php"
Reply: Lincoln Yeoh: "Re: sql injection and php"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

I hope the list is right :-)
Does the magic_quotes in php's configuration resolves the problem of sql 
injection? Is this technique still a risk when the option is enabled?
Most documentation I found was presenting ASP examples, but simple entering ' 
character doesn't work when this option is enabled (which is set in default 
configuration).
Thanks for any answers and/or references on the subject.

Regards,
Jacek Lach

Next message: Mike Smith: "RE: Verizon Call Intercept"
Previous message: mikedat_private: "Re: DirectX 9 SDK, Microsoft have got balls...."
Next in thread: Sverre H. Huseby: "Re: sql injection and php"
Reply: Sverre H. Huseby: "Re: sql injection and php"
Reply: Florian Weimer: "Re: sql injection and php"
Reply: Lincoln Yeoh: "Re: sql injection and php"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue May 28 2002 - 15:02:18 PDT