durusmail: quixote-users: Re: Popularity of Quixote
Popularity of Quixote
2005-10-17
2005-10-17
Re: Popularity of Quixote
2005-10-18
2005-10-19
2005-10-19
2005-10-19
ANN: TURBOZCHERRYPLORAILS
2005-10-19
2005-10-19
2005-10-19
2005-10-22
2005-10-22
2005-10-25
2005-10-25
2005-10-25
2005-10-25
2005-10-25
2005-10-25
2005-10-25
2005-10-25
2005-10-26
2005-10-27
2005-10-27
2005-10-27
2005-10-27
2005-10-27
2005-10-27
2005-10-27
DateTime quoting in psycopg
2005-10-28
Re: Popularity of Quixote
Paul Moore
2005-10-27
On 10/27/05, Oleg Broytmann  wrote:
> On Wed, Oct 26, 2005 at 07:21:17PM -0700, Shalabh Chaturvedi wrote:
> > This would be SQL-escaped similar to the way HTML is escaped within PTL
>
>   You can eacape an HTML snipet because there one clearly defined standrd
> escame method.
>   You cannot escape an SQL query because there are too many slightly
> different SQLs.

.... and you generally shouldn't paste escaped values into SQL
statements, but rather use bind variables in any case.

Paul.
reply