Magic Quotes are Worthless

22 Mar 2005

The new issue of php|architect just came out, and this month's Security Corner topic is magic quotes. In this article, I explain why the magic quotes directive should always be disabled. Because I often see people cite security as a reason to enable magic quotes, I felt that it was important to correct this misconception.

Personally, I would like to see magic quotes deprecated and eventually dropped from future releases of PHP.

In next month's issue, I might explain why BBCode is worthless. :-)