Beefy Boxes and Bandwidth Generously Provided by pair Networks
There's more than one way to do things
 
PerlMonks  

Re^4: Cookie login (pseudocode)

by Spidy (Chaplain)
on Feb 20, 2008 at 15:59 UTC ( #669031=note: print w/ replies, xml ) Need Help??


in reply to Re^3: Cookie login (pseudocode)
in thread Cookie login (pseudocode)

Akoya, the DBI module will sanitize the parameters you pass in to placeholders in a prepared statement:

my $sth = $dbh->prepare("SELECT * FROM foo WHERE bar = ?"); $sth->execute("my 'scary variable here';");
Whereas if you just did it using $dbh->do():
$dbh->do("SELECT * FROM foo WHERE bar = " . "my scary 'variable here'; +");
You would have a problem, because the ' and ; characters would not have been escaped - and would therefore do Bad Things™ to your database.


Comment on Re^4: Cookie login (pseudocode)
Select or Download Code

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://669031]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others scrutinizing the Monastery: (10)
As of 2015-07-03 11:39 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    The top three priorities of my open tasks are (in descending order of likelihood to be worked on) ...









    Results (51 votes), past polls