PHP Filter _POST

[40esp]

Im trying to protect my web application from sql injection, but i need some help filtering out all of the bad characters from my posted textfield (  $_POST['user'];  ) such as    ();'>=<

 

how would i do this. Im stumped. If anyone could provide an example that would be great.

 

 

 

Thank you.

[40esp]

actually, ive obtained info to fix it. thanks and sorry.

 

for anyone that wants it:

function security($str) {
	$str = @trim($str);
	if(get_magic_quotes_gpc()) {
		$str = stripslashes($str);
	}
	return mysql_real_escape_string($str);
}
$value = security($_POST['value']);
echo $value;