Ok, while did find some tutorial material on mysqli, etc., neither my wamp
installation, or my online hosting server seem to support it at all, but
anyway.
Stay well
Jacob Kruger
Blind Biker
Skype: BlindZA
'...fate had broken his body, but not his spirit...'
- Original Message -
From
Hi,
If you are specially paranoid, you can use prepared statements (only
mysqli).
If you are even more paranoid, you can use views and stored procedures and
never let the user access (directly) the tables of your database.
Never forget that $_GET functions can carry injections when you make some
Will check it out, but for example, one of the first things I do is when
making use of something like a row Id passed as a querystring/$_GET item, is
use the is_numeric() function to make sure it's only a number, etc.
Stay well
Jacob Kruger
Blind Biker
Skype: BlindZA
'...fate had broken his bo
