Home > mailing lists

Re: 8.1.4: Who says "PHP deprecated addslashes since 4.0"? - Mailing list pgsql-general

From	Tom Lane
Subject	Re: 8.1.4: Who says "PHP deprecated addslashes since 4.0"?
Date	May 25, 2006 03:05:41
Msg-id	7747.1148526331@sss.pgh.pa.us Whole thread Raw
In response to	8.1.4: Who says "PHP deprecated addslashes since 4.0"? (ljb <ljb220@mindspring.com>)
List	pgsql-general

Tree view

ljb <ljb220@mindspring.com> writes:
> |  addslashes() or magic_quotes. We note that these tools have been deprecated
> |  by the PHP group since version 4.0.

> Can anyone provide a source for the statement?

I'm not going to put words in Josh's mouth about where he got that from,
but anyone who reads all of the comments at
http://us3.php.net/manual/en/function.addslashes.php
ought to come away suitably unimpressed with the security of that
function.

            regards, tom lane

pgsql-general by date:

From: Tom Lane
Date: 25 May 2006, 01:36:32
Subject: Re: recompliing c-language functions with new releases of postgres

From: "Chris Velevitch"
Date: 25 May 2006, 03:36:46
Subject: Re: How to estimate disk space

Re: 8.1.4: Who says "PHP deprecated addslashes since 4.0"? - Mailing list pgsql-general

Previous

Next