From owner-freebsd-security  Thu Apr 25 18:17: 9 2002
Delivered-To: freebsd-security@freebsd.org
Received: from server.cisinc.com.tw (www.cisinc.com.tw [211.72.176.178])
	by hub.freebsd.org (Postfix) with ESMTP id A576637B404
	for <freebsd-security@FreeBSD.ORG>; Thu, 25 Apr 2002 18:17:04 -0700 (PDT)
Received: from localhost (89.c218-184-32.ethome.net.tw [218.184.32.89])
	(authenticated (0 bits))
	by server.cisinc.com.tw (8.12.1/8.11.6) with ESMTP id g3Q1Guuw045542
	for <freebsd-security@FreeBSD.ORG>; Fri, 26 Apr 2002 09:17:02 +0800 (CST)
	(envelope-from issacchi@cisinc.com.tw)
Message-ID: <004801c1ecc0$0f4c0200$0100007f@et.com>
From: "Chi Mn Sh" <issacchi@cisinc.com.tw>
To: <freebsd-security@FreeBSD.ORG>
Subject: sql injection
Date: Fri, 26 Apr 2002 09:16:51 +0800
MIME-Version: 1.0
Content-Type: text/plain;
	charset="big5"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.50.4807.1700
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4807.1700
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

Hi,

 My freind told me that PHP with "magic_quotes_gpc" on can prevent any sql
injection.

 Is it true?

 Thanks for the answers.




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message