Tom,
Belated thanks for the info (I've been away from my desk).
Very helpful.
--
Geoff Caplan
Vario Software Ltd
(+44) 121-515 1154
---(end of broadcast)---
TIP 7: don't forget to increase your free space map settings
Geoff Caplan wrote:
Are the standard escaping functions found in the PHP, Tcl etc APIs to
Postgres bombproof? Are there any encodings that might slip through
and be cast to malicious strings inside Postgres? What about functions
like convert(): could they be used to slip something through the
escap
