bnelson333

Thanks for the replies, you have sorted me out. Note - the webhost is for a client who has had the same webhost for a looooong time, he's happy with it, so I'm not going to change anything. Per the manual on mysql_real_escape_string, it says is magic quotes is enabled on the server then I should use stripslashes first to avoid double escaping. That works for what I wanted to do, I just wanted to make sure I understood how it should look in the db. Thanks!

Hey all, new here. Got a question about escaped strings to MySQL. I'm using mysql_real_escape to clean up passed data. My question is, when I do that, should the data be stored physically in MySQL with the slashes or not? That is, if the text is: joe's Should that be stored in MySQL as joe's, or joe\'s ? To make things more complicated, my dev box doesn't have magic quotes on, but the webhost does (and won't let me disable it), so I have to see if there's a working solution for both environments. (when I use just mysql_real_escape on dev box, it stores just the ' in mysql, but when I move it to webhost, it stores \', and not sure which is right).