Well before your awnser will be posted, please note that your registration page is not save. I would be able to take over your SQL server and that's not good :)

Please look at this tutorial: Combined Minds > Tutorials > PHP Security: SQL Injection

__________________
Nunchaku! Who doesn't like martial arts? =)