Be aware that even using ini_set to set 'magic_quotes_runtime' will stop working in PHP 5.4. See http://php.net/manual/en/info.configuration.php#ini.magic-quotes-runtime
set_magic_quotes_runtime
(PHP 4, PHP 5)
set_magic_quotes_runtime — Define a configuração atual para magic_quotes_runtime
Descrição
set_magic_quotes_runtime
( int
$new_setting
) : boolDefine a configuração atual pata magic_quotes_runtime.
Parâmetros
-
new_setting -
0 para off, 1 para on.
Valor Retornado
Retorna TRUE em caso de sucesso ou FALSE em caso de falha.
Veja Também
- get_magic_quotes_gpc() - Obtém a configuração atual de magic quotes gpc
- get_magic_quotes_runtime() - Obtém a configuração ativa para magic_quotes_runtime
add a note
User Contributed Notes 4 notes
serpent at paradise dot net dot nz ¶
12 years ago
gusb at NOSPAM dot mailinator dot com ¶
13 years ago
You should NEVER rely on magic quotes or addslashes for security in an SQL context. You should ALWAYS use proper escape functions, such as mysql_real_escape_string. Failure to do so may result in an SQL injection vulnerability.
Anonymous ¶
11 years ago
A simple check and disabling of magic quotes whenever needed (e.g. if you deploy to multiple servers or you don't know the target server's PHP version).
<?php
if(version_compare(PHP_VERSION, '5.3.0', '<')){
set_magic_quotes_runtime(0);
}
?>
php at nospam-qualystem dot com ¶
21 years ago
get_magic_quotes runtime and set_magic_quotes_runtime are useful when you want to read some data in a binary file using fread() and some bytes in such file may be interpreted as \ (backslash), " (double quotes), ' (simple quote) or any "special" character that has a meaning for string processing.
