Based on this article, how do you write secure PHP code, the author seems to claim that there is no 100% way? A bit confusing. What can I do to totally prevent an sql hack attack? http://shiflett.org/archive/184 The addslashes() Versus mysql_real_escape_string() Debate