At 11:03 PM -0500 3/31/07, Richard Lynch wrote:
So, after a recent thread on data filtering, I'm wondering...
Is this "good enough" in ALL possible Unicode/charset situations:
$foo_id = (int) $_POST['foo_id'];
$query = "insert into whatever(foo_id) values($foo_id)";
The range of Unicode is massive FFFFFF. The "effective" range of
Unicode code points is 0x10FFFF, which is around 1.1 million, you
might want to limit it to that. That should work until someone either
adds more new languages than we currently have or we discover several
new continents. The "current" range is less than 0xFFFF (65k), so I
don't think you would have problems limiting it to that figure.
Cheers,
tedd
--
-------
http://sperling.com http://ancientstones.com http://earthstones.com
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
