|
|||||||||
|
|||||||||
| |||||||||
|
|||||||||
|
|||||||||
| |||||||||
|
|
|
| |||||||||
 |
|
|
«
Previous Thread
|
Next Thread
»
|
Thread Tools | Search this Thread | Rate Thread | Display Modes |
Dev Shed Forums Sponsor:
|
|
|
|
#1
June 19th, 2001, 02:27 AM
|
|||
|
|||
|
escaping illegal characters for MySQL with perl
I'm a newbie...
coded a little perl script to post form data to MySQL database. I'm wondering if I need to add any perl code to the posted data that will escape any illegal characters before it gets written to the database. Is there standard code already written for this purpose? Sorry if this has been covered. i searched and didn't come up with anything. thanks!
|
|
#2
June 19th, 2001, 05:38 AM
|
||||
|
||||
I assume that your using DBI to access the db. Try using DBI's $dbh ->quote();, or use place holders.
Mickalo
__________________
Thunder Rain Internet Publishing Custom Programming & Database development Providing Personal/Business Internet Solutions that work!
|
|
#3
June 20th, 2001, 02:03 AM
|
|||
|
|||
|
Yes, you should always use dbi and the quote() or place holders method. If you're using something other then dbi (first of all, you'd be a fool
 ), you could just use a regex to do it (note: all this does it backtick '):Code:
$var =~ s|'|\\'|g;
|
|
#4
June 20th, 2001, 10:11 AM
|
|||
|
|||
|
Thanks for the replies. Unfortunately I'm not 100% sure how this works, and can't seem to find more information on it's use. Do you just re-assign the variable like this, or is it different?
$var = "big mamma's house"; $var = $dbh->quote($var); Thanks again! Rory
|
|
| Viewing: Dev Shed Forums > Programming Languages > Perl Programming > escaping illegal characters for MySQL with perl |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
 |
|
|
Del.icio.us
Digg
Google
Spurl
Blink
Furl
Simpy
Y! MyWeb
Linear Mode
