In message <[EMAIL PROTECTED]>, Sybren Stuvel wrote: > Lawrence D'Oliveiro enlightened us with: >> "select * from details where person_name like" >> " concat(\"%%\", %s, \"%%\")" \ >> % \ >> QuoteSQL(name, True) > > Wouldn't this be a whole lot better? > > cursor.execute( > "select * from details where person_name like ?", > '%' + name + '%' > )
No. Can you figure out why? -- http://mail.python.org/mailman/listinfo/python-list
