I did think of storing them in a session/application scope but to be honest I am currently thinking I can safely ignore text fields as any single quotes would be excaped anyway, I can then do...
<cfif isNumeric(somefield)>do the sql<cfelse><cfthrow type="an error"></cfif> And that would prevent any injection attempts. I could then cache the queries the regular way, no? -- Jay ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:254364 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4