escaping

Disclaimer This is not a question about whether we should be escaping for database input. This is strictly looking at the technical differences between the three functions in the title. There is this question discussing the difference between htmlentities() and htmlspecialchars() . But, it doesn't really discuss filter_var() and the information I found on Google was more along the lines of "Make sure you escape user input before it is echo'd!" My questions are: Why are htmlspecialchars() and htmlentities() commonly used over filter_var() ? Is there some performance hit from using filter_var()

How do you properly escape quotes in powershell v2 (called from within a batch file)? I have tried: powershell -Command "(gc file1.txt) -join "`n" | Out-File file2.txt" and powershell -Command "(gc file1.txt) -join ""`n"" | Out-File file2.txt" and powershell -Command "(gc file1.txt) -join '"`n`" | Out-File file2.txt" but they all fail. Editor's note : The purpose of the command is to transform Windows CRLF line breaks to Unix LF-only ones, so as to create a file that will be processed on Linux. From a batch file ( cmd.exe ), you must \ -escape embedded " instances (even though PowerShell-

related to this: Preserve Quotes in bash arguments A simple example, where I simply run a command with nohup ... #!/bin/bash nohup "$@" ... ./myscript gedit some\ file\ with\ spaces.txt This works fine. However, I have no idea how to keep the correct bits of the arguments escaped when using an intermediate variable... #!/bin/bash CMD="$@" printf "%q\n" "$CMD" #for debugging nohup $CMD I've tried a few permutations and nothing works in all cases. What am I missing? Ideally I would like to be able to modify $CMD before nohup . You need to use an array. cmd=( "$@" ) printf '%q\n' "${cmd[@]}"

I have a simple query regarding ResultSet.getString() method in java for JDBC. Suppose the value in the Database column is having a \ which is javas escape character e.g. \n or \t etc. When i retrieve the value as getString() i see one more escape character is getting added and the actual meaning of this \n is now a string literal only. So i had to unescape java and then use it properly. String s= rs.getString("col_name"); When s contains `\n': System.out.println(s) output: \n After unescaping java using apache common StringEscapeUtils output: System.out.println("hi"+s+"hello"); hi hello My

I have a NSString that may contain quotes,\, /, \r, \n, and I want to convert it to a JSON encoded string so strings like this "text1\text2" becomes \"text1\\text2\" Is there a existing function to let me do this? Also, I am using SBJson in my project but I cannot find whether SBJson can do this or not. NSJSONSerialization is not on the table since my application still needs to support OSX 10.6 Does this answer your question? -(NSString *)JSONString:(NSString *)aString { NSMutableString *s = [NSMutableString stringWithString:aString]; [s replaceOccurrencesOfString:@"\"" withString:@"\\\""