Cheers Rick ... I think I nailed it. I've copied my little function
below for anyone else interested.
Am keen on the "saving milliseconds" bit, though (will add it to the
function below before making it live). Any more tips?
Dave
function parse($what) {
$what = strtolo
Just use PHP's string searching functions. I had a similar situation where
I was inserting user-provided data into a MySQL database. I searched for
MySQL "bad words" that I didn't want a hacker to insert into queries, such
as DELETE, ADD, INSERT, MODIFY, etc. to prevent mischief.
FYI, you can d