Benjamin Smith wrote: > There is no mechanism for escaping untrusted input? Correct. At least there's no magic quoting function. Ralph -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: <http://lists.centos.org/pipermail/centos/attachments/20080226/2d60da91/attachment-0004.sig>