Question : Password characters breaking SQL statement

I allow any character in a password on a website, but what is happening is that my SQL statement is having problems validating because some characters are interpreted as commands:

select UserID from tblUser where username='chris' and password='111{H}-tzD4<UIQw'

This statement does not find the record, I if I remove the {} characters, it works. Is there a way to tell SQL servers to take all characters literally? (except single quotes of cource) If not, what other method is useful?

Answer : Password characters breaking SQL statement

Nine times out of ten these problems are due to lack of coordination between client writes and server reads and vice versa. For instance, because of streams blocking, your program will lock up if it tries to read when nothing has been written nor will be.

I suggest you go through your code with a fine toothed comb for this sort of problem

Random Solutions

Lens error, restart camera error on Canon Ixus 60

Unable to view PDF files in a web browser

SAP RFC returning Invalid Data Type

Audit, log and RBAC on AIX

Excel control returns only a string

AMD vs Intel? on dell's website - which has greater VM performance?

FAX configuration in windows 2003 server with Gmail.

How do I modify this php script to send a confirmation?

How to avoid zero(s) in front of number(s) disappears in array

Setting up my first database driven web site