drieux wrote:
>
> if you are trying to make sure that you have packed up the
> message correctly before pushing it into the mess - then
> you might want to do something like
>
> my $msg = "select distinct X from Y where P=\'$pVal\'";
>
> so that we can verify that the SQL is 'kosher' and would be
> what we would type in to get ....
use placeholders here to avoid having to 'kosherize' the data:
my $sth = $dbh->prepare("select foo from bar where baz=?");
$sth->execute($pVal); # it's automatically sql-escaped
--
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
