php - Does hash values contain quotes? -


does hash values contain quotes?

if dependent algorithm, want know blowfish using phpass.

i'm asking in regard sql injection because don't want prepare query authentication , use place holders, wrapping username , password hash in quotes. ( have doubt username safe when validated consist of word chars [a-wa-w1-9_] (no quotes or other special chars)? )

yes, hash values can contain quotes. usernames.

you should not base database-interaction on fragile assumption never should have (because hope not prepare sounds ridiculous).

instead make database query safe possible regardless assume data be. things go wrong on end , don't want error stored in persistence layer nor want offer potential door sql injection.


Popular posts from this blog

Php - Delimiter must not be alphanumeric or backslash -

Delphi interface implements -

trac - Modifying workflow to add a status and split on ticket type -