List:General Discussion« Previous MessageNext Message »
From:Daevid Vincent Date:June 4 2007 9:44pm
Subject:RE: MySQL Magazine - Issue 1 available NOW!!!!
View as plain text  
Thanks for the magazine. I already incorporated a little extra SQL
injection checking into my db.inc.php wrapper...

//[dv] added to remove all comments (which may help with SQL injections
as well.
$sql = preg_replace("/#.*?[\r\n]/s", '', $sql);
$sql = preg_replace("/--.*?[\r\n]/s", '', $sql);
$sql = preg_replace("@/\*(.*?)\*/@s", '', $sql); 

Keep up the great work!

d

> -----Original Message-----
> From: B. Keith Murphy [mailto:bmurphy@stripped] 
> Sent: Monday, June 04, 2007 9:56 AM
> To: MySQL General
> Subject: MySQL Magazine - Issue 1 available NOW!!!!
> 
> Everyone,
> 
> I have just uploaded the first issue MySQL Magazine to 
> http://paragon-cs.com/mag/issue1.pdf
> 
> Please take a look at it.  There is a great deal of 
> information here and 
> I think it is worth some time.  
> 
> Feedback is always welcome.
> 
> thanks,
> 
> Keith Murphy
> 
> -- 
> MySQL General Mailing List
> For list archives: http://lists.mysql.com/mysql
> To unsubscribe:    
> http://lists.mysql.com/mysql?unsub=1
> 
> 

Thread
MySQL Magazine - Issue 1 available NOW!!!!B. Keith Murphy4 Jun
  • RE: MySQL Magazine - Issue 1 available NOW!!!!Daevid Vincent4 Jun
    • Re: MySQL Magazine - Issue 1 available NOW!!!!NĂ©stor4 Jun
      • RE: MySQL Magazine - Issue 1 available NOW!!!!Daevid Vincent5 Jun
    • Re: MySQL Magazine - Issue 1 available NOW!!!!Jon Ribbens5 Jun
      • Re: MySQL Magazine - Issue 1 available NOW!!!!Peter Rosenthal7 Jun
        • Re: MySQL Magazine - Issue 1 available NOW!!!!Jon Ribbens7 Jun
    • Re: MySQL Magazine - Issue 1 available NOW!!!!Yves Goergen9 Jun
      • RE: MySQL Magazine - Issue 1 available NOW!!!!Daevid Vincent11 Jun
        • Re: MySQL Magazine - Issue 1 available NOW!!!!Gordan Bobic11 Jun
          • Re: MySQL Magazine - Issue 1 available NOW!!!!Kevin Hunter11 Jun