On Sat, December 16, 2006 7:03 am, Lester Caine wrote: > Of cause many of us never go near the raw database calls anyway, since > we are using frameworks that carry out lot of the security checks at a > generic level - so I see little point adding more checks at a level > that > major projects do not use anyway?
Because some of us don't use the bloated frameworks, often because those who develop the bloated frameworks didn't do filtering properly, perhaps because they didn't have a taint mode to notify them that they were writing sub-standard code. :-) :-) :-) -- Some people have a "gift" link here. Know what I want? I want you to buy a CD from some starving artist. http://cdbaby.com/browse/from/lynch Yeah, I get a buck. So? -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
