On Jan 11, 2008 6:11 AM, perlmunky <[EMAIL PROTECTED]> wrote: > I realise that this is not smart, at least without any parameter checking. > I need a way of making the information 'safe' - avoid sql injections etc.
> hints, tips and solutions accepted :) Have you tried writing Perl code to do the parameter checking? Perl is generally good at that. > I have tried using $dbh->quote($string) but this creates errors if the key > word entered by the users is null - as oracle thinks this is not a keyword. That sounds like exactly the kind of situation that Perl code could easily detect and avoid. What have you tried? Cheers! --Tom Phoenix Stonehenge Perl Training -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] http://learn.perl.org/