Matthew Schumacher <[EMAIL PROTECTED]> writes:
> I upgraded to postgres-8.1.4 and saw all of the backslash escape changes
> and understand why, but I can't figure out how to put a literal \' in
> the database.
You use the SQL-standard way, which is to repeat the quote mark:
'Meet at Joe''s house'
> The data is coming from PHP,
I have met your problem, and its name is addslashes(). Don't use it.
addslashes is exactly the security hole we are trying to plug.
regards, tom lane
---------------------------(end of broadcast)---------------------------
TIP 1: if posting/reading through Usenet, please send an appropriate
subscribe-nomail command to [EMAIL PROTECTED] so that your
message can get through to the mailing list cleanly
