Trying to Eliminate magic_quotes

[X51]

So I am trying to find a good alternative to this code:

 

	function clean($str) {
	$str = @trim($str);
	if(get_magic_quotes_gpc()) {
		$str = stripslashes($str);
	}
	return mysql_real_escape_string($str);
}

 

I did a few searches here and just keep coming up with instances of its use rather than a solution as I was hoping for. I was also checking the php manual and found user comments on it, but am not sure what is best to use rather than the magic_quotes.

 

Any suggestions?

[scootstah]

What's wrong with that?

[Muddy_Funster]

if it's a big problem for you the "solution" is to turn it off in the php.ini file

[ManiacDan]

Code like this is used if you're going to be moving your code to a server and you're unsure if magic_quotes will be on or not.  This is true for scripts you will sell or otherwise distribute, or sites you'll be placing on shared hosts.  If you know magic_quotes will be off, don't handle it in your code.

[X51]

I was under the impression that magic_quotes were being eliminated so I was searching for other ways to do the same thing.

[PFMaBiSmAd]

You can continue to use that exact same logic when magic_quotes are removed. get_magic_quotes_gpc() will still be present, but will always return a FALSE value.

[X51]

I see, thanks for the responses

[ManiacDan]

That code you pasted will remove the effects of magic_quotes if it's enabled.  The code is specifically designed to remove magic_quotes, so it, itself, was doing what you were trying to do by removing it.