Skip site navigation (1)
Skip section navigation (2)
Peripheral Links
Header And Logo
|
Site Navigation
Re: entrance from php to postgresql
- From: DCarrero <dcarreroc(at)gmail(dot)com>
- To: "John DeSoi" <desoi(at)pgedit(dot)com>
- Cc: pgsql-php(at)postgresql(dot)org
- Subject: Re: entrance from php to postgresql
- Date: Tue, 11 Jul 2006 13:49:52 -0400
2006/7/11, John DeSoi <desoi(at)pgedit(dot)com>:
On Jul 11, 2006, at 1:23 PM, DCarrero wrote: > I was asking if this useful, or secure to do a transaction on web, or > you recomend use a function with parameters an inside this insert > data, thank for the information too... If you are inserting user entered data (especially from the web) I highly recommend you use prepared statements. This will deal with security issues related to SQL injection. I prefer to use functions, but it is not necessary. Here is a short article I wrote which you might find helpful in using prepared statements from PHP: http://pgedit.com/resource/php/pgfuncall
Thanks again :D
- Follow-Ups:
- Re: entrance from php to postgresql
- From: DCarrero
- Re: entrance from php to postgresql
- References:
- entrance from php to postgresql
- From: DCarrero
- Re: entrance from php to postgresql
- From: John DeSoi
- Re: entrance from php to postgresql
- From: DCarrero
- Re: entrance from php to postgresql
- From: John DeSoi
- entrance from php to postgresql
- Prev by Date: Re: entrance from php to postgresql
- Next by Date: Re: entrance from php to postgresql
- Previous by thread: Re: entrance from php to postgresql
- Next by thread: Re: entrance from php to postgresql
- Indexes: