Tilted Forum Project Discussion Community - View Single Post

Fallon · 08-22-2004, 08:53 AM

k, so I'm running a MUD with a MySQL backend and I've had a total brain fart. I'm trying to write a function that'll check the string going to the db to make sure that it doesn't contain any nasties in it that'll cause the db to go boom. I've tried strchr to check for a ;. I've thought about comparing, but that won't work because I just need it to get one dinky little part. Any idea on how I can do this? Thanks.

08-22-2004, 08:53 AM	#1 (permalink)
Fallon Junkie Location: RI	[C] Preventing SQL Injection k, so I'm running a MUD with a MySQL backend and I've had a total brain fart. I'm trying to write a function that'll check the string going to the db to make sure that it doesn't contain any nasties in it that'll cause the db to go boom. I've tried strchr to check for a ;. I've thought about comparing, but that won't work because I just need it to get one dinky little part. Any idea on how I can do this? Thanks.