<?php

$username = "mysqluser";
$password = "mysqlpassword";
$server = "www.example.com";
$database = "bf_stats";

function sanitize($data) {
	// apply stripslashes if magic_quotes_gpc is enabled
	if(get_magic_quotes_gpc()) {
		$data = stripslashes($data);
	}
	
	// a mysql connection is required before using this function
	$data = mysql_real_escape_string($data);
	
	return $data;
}
?>