[Zope-DB] ASC / DESC in queries`?

Jan Johansson jan.johansson@viking-telecom.com
Tue, 26 Feb 2002 13:17:05 +0100


Uhhhhm, dare i ask another question? What is the correct way (if any) to
insert "Asc"/"Desc" arguments in a SQL statement? using dtml-var migth =
not
be clever, since you could insert hostile code, and dtml-sqlvar quotes =
the
values so it inserts 'DESC' instead of DESC.