> Also, if you are using stored procedures to do the INSERTS & UPDATES, checking for quotes becomes unneccessary.
It depends on how you call stored procedures. If parameters are passed as string literals then you still have to double single quotes inside them.
--sb--