Re: [PHP] Magic quotes good or Bad?

2006-04-06 Thread David Tulloh
Angelo Zanetti wrote: Hi guys. ... So on my live server should I enable magic_quotes_gpc or should I use addslashes() and stripslashes()? Thanks in advance. In addition to all the other replies saying that magic quotes are evil which I completely agree with, it should also be noted that

Re: [PHP] Magic quotes good or Bad?

2006-04-06 Thread Kevin Waterson
This one time, at band camp, Angelo Zanetti [EMAIL PROTECTED] wrote: should I enable magic_quotes_gpc or should I use addslashes() and stripslashes()? magic quotes is disabled by default these days, and does not make for portable code. It is removed in PHP6 Kevin -- Democracy is two wolves

[PHP] Magic quotes good or Bad?

2006-04-05 Thread Angelo Zanetti
Hi guys. I've just read an article that gives a good explanation about escaping single quote characters with slashes, the author then says that magic_quotes_gpc can do this for you if enabled on your server, he then he also mentions how if your magic_quotes_gpc are not turned on/enabled that

Re: [PHP] Magic quotes good or Bad?

2006-04-05 Thread Brad Bonkoski
IMHO, it really depends on a couple of things... 1). how you use it and 2). How much control you want... If you have a single point of entry for database actions, like a class that mimics the database structure and handles updates, inserts, deletes, then it makes sense to turn them off to give

Re: [PHP] Magic quotes good or Bad?

2006-04-05 Thread Chris Shiflett
Angelo Zanetti wrote: So should i avoid magic_quotes_gpc all together? In my opinion, yes. my local development server has them enabled and when testing the input of a textfield that does a select query I input 'hello' (including single quotes) and it works really well with the single quotes

Re: [PHP] Magic quotes good or Bad?

2006-04-05 Thread tedd
At 2:37 PM -0800 4/5/06, Angelo Zanetti wrote: Hi guys. I've just read an article that gives a good explanation about escaping single quote characters with slashes, the author then says that magic_quotes_gpc can do this for you if enabled on your server, he then he also mentions how if your

Re: [PHP] Magic quotes good or Bad?

2006-04-05 Thread John Nichel
Angelo Zanetti wrote: Hi guys. I've just read an article that gives a good explanation about escaping single quote characters with slashes, the author then says that magic_quotes_gpc can do this for you if enabled on your server, he then he also mentions how if your magic_quotes_gpc are not

Re: [PHP] Magic quotes good or Bad?

2006-04-05 Thread Peter Hoskin
tedd wrote: I do it by placing a text file at root named .htaccess with the following php_value magic_quotes_gpc 0 php_value magic_quotes_sybase 0 php_value magic_quotes_runtime 0 Only works if your web server allows you to do this. In Apache the controlling option for this is: Directory