On Dec 4, 2009, at 10:29 AM, Jeff Rogers wrote:
Unfortunately the postgres driver doesn't protect against against dml injection.
The bind variable emulation does. It essentially does the quoting that an earlier poster recommended one do manually.
No muss, no fuss... ---- Don Baccus http://donb.photo.net http://birdnotes.net http://openacs.org -- AOLserver - http://www.aolserver.com/ To Remove yourself from this list, simply send an email to <lists...@listserv.aol.com> with the body of "SIGNOFF AOLSERVER" in the email message. You can leave the Subject: field of your email blank.
