- 论坛徽章:
- 0
|
one more big difference between single quotes and double quotes is that:
single quotes will treat everything in it as string so it can somewhat avoid SQL injection incurred by suspicious variables, especially in SQL statements, though you have to need other mechanism to protect against SQL injection. so my company(foriegn) requires all SQL statements use single quotes.
BTW: a good programmer should not find any excuses for not remembering syntax details
[ 本帖最后由 dreammaker 于 2006-4-13 01:04 编辑 ] |
|