I'm interested what is the best way to prevent SQL injection?
I'm trying to create client-side posts submit form without registration, and I really need to keep my database secured.
So what you guys can advice me? (except disallowing this feature :D)
Are escape() or/and prepare() functions really trusty?
Or should I Use my own regular expressions to keep my database clean?