Friday, January 30, 2009

htmlspecialchars() and mysql_real_escape_string()

http://shiflett.org/articles

What People are looking for in a good PHP developer
http://blog.rvdavid.net/php-developers-freelancers-or-companies-i-need-you/

quotes:
Artificial Intelligence is no match for Natural Stupidity.

Passwords are like underwear. You shouldn’t leave them out where people can see them. You should change them regularly. And you shouldn’t loan them out to strangers.


htmlspecialchars() Vs mysql_realescape_string()
http://www.sitepoint.com/forums/showthread.php?t=449054
inshort: htmlspecialchars() is for display
and mysql_real_escape_string() is for storage

details: and benefits of mysql_real_escape_string()
addslashes() vs mysql_real_escape_string()
http://shiflett.org/blog/2006/jan/addslashes-versus-mysql-real-escape-string

a-r-t:cf: Greedy Mysql and regular expression
SELECT * FROM `cf`
WHERE data REGEXP '(<text>).*([^<\/]image).*(<\/text>)';

No comments: