Call me wierd, but I'm finding it a little hard to get my head around putting together select statements using the DAL. I think I must just be having a stupid couple of weeks!
I understand that using the DAL & SQLFORM etc for inserts will help protect me against SQL Injection so I'm happy to keep on doing that, but is there any particular reason I shouldn't just use db.executesql to perform my selects (because I find it easier)? I also understand that raw SQL queries are database specific but I don't mind, as I don't intend to move databases. Chris
