PHP - Filtering Out Any Web Address In $_post Vars

Hey guys, we have a website where people are able to post things, and we don't want to allow anyone to be able to post their street address, for obvious reasons. I'm really stuck on this one, I've looked for some regular expressions to no avail...one idea we did have was to check a text for an address then check to see if it was a valid address with the google maps API but then again...it goes back to having a regular expression for capturing the street address. I was wanting to know, is there any way I will be able to catch whether a user has posted an address? I was going to post this in the regex section but I'm not sure if I should use any regex's or if there might be another way.

Put basically I need to be able to strip a street address from the text if a user posts one.

I'm pretty sure it's probably not possible, but I figured I'd ask first. Thanks for any help anyone can provide!

 

I have a basic form for collecting data, I have a function for collecting the ip address of the visitors unfortunately I cannot get the ip collection working with the rest of the form once I put the if($_POST['emailaddress']) {.........} in.

My aim is once the user has completed the form, data gone to MySQL database that the data will then be printed via the echo statements on to the form as the action sends it back to the same page.

Currently my code is


<?php  
/*
This script is a form handler, each section is commented as to what it does.
1. connects to the database (see connect.php).
2. it gets the users ip address.
3. Strips tags from the data entered so that no malicious code can be entered and corrupt/cause problems with the database or site.
4. Inserts the relevant data into the database in this case it is the ip, haveemail, emailaddress, browser, otherbrowser, resolution, otherresolution.
5. Sends the data just entered by the user back to the screen so they can see what they entered
*/

// 1. connection to MySQL  
require ("php/connect.php"); // if this script is unavailable then the rest of the code is pointless as need a connection to the database.  

// if fields are completed
if($_POST['emailaddress'])
{ // if this field has had data entered then process the data

// 2. collect ip address  
//$ip = getRealIpAddr(); 

// 3. Strips tags and POST variables from the form 
$haveemail = strip_tags($_POST['haveemail']);  
$emailaddress = strip_tags($_POST['emailaddress']);  
$browser = strip_tags($_POST['browser']);  
$otherbrowser = strip_tags($_POST['otherbrowser']);  
$resolution = strip_tags($_POST['resolution']);  
$otherresolution = strip_tags($_POST['otherresolution']);  


// 4. insert data to dbase  
$query="INSERT INTO datacollection1 (id, ip, haveemail, emailaddress, browser, otherbrowser, resolution, otherresolution) VALUES ('Null', '$ip', '$haveemail', '$emailaddress', '$browser', '$otherbrowser', '$resolution', '$otherresolution')";  

// Null is in the id field as this is added automatically in the database as it is set to auto increment upon an entry going in and is  primary key.  

// message to say if database has been updated  

mysql_query($query) or die (mysql_error());  

//echo "<b>Your IP address is: $ip</b> <br />"; 
  


/*function getRealIpAddr() 
{ 
    if (!empty($_SERVER['HTTP_CLIENT_IP']))   //check ip from share internet 
    { 
      $ip=$_SERVER['HTTP_CLIENT_IP']; 
    } 
    elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR']))   //to check ip is pass from proxy 
    { 
      $ip=$_SERVER['HTTP_X_FORWARDED_FOR']; 
    } 
    else 
    { 
      $ip=$_SERVER['REMOTE_ADDR']; 
    } 
    return $ip; 
} */

// 5. displays information on form to advise what the user just entered
echo '<br/>'."The database has just been updated with the following information: ".'<br/><br/>';
// echo "Your ip address is ".$ip.'<br/>';
echo "You answered ".$haveemail." to having an email address.".'<br/>';
echo "Your email address is ".$emailaddress.'<br/>';
echo "You use ".$browser." to browse the internet".'<br/>';
echo $otherbrowser.'<br/>';
echo "Your screen resolution is set at ".$resolution.'<br/>';
echo $otherresolution.'<br/>';
echo "Now you have completed this form, please follow onto the main form, this form seeks to get your valuable opinion regarding your likes and dislikes of the websites researched.";
}

mysql_close($db); // closes the database, this is good practice but the database will close once stopped running.


?>


I have tried moving the function outside of the if($_POST['emailaddress']) but it still didnt get the ip address.

Just as a side note everything else works, the data is written into the database bar the ip address.

I would appreciate some help 

Thanks in advance.

I have a form with PHP validation and also a mysqli query checking for duplicates in the database for mailing address and email address in mysql.     It works fine but the customers are adding spaces in the mailing address for example  111 mailing address A V  E, 1 1 1 ma iling address A V  E etc.  and my sql query doesn't see that as an address that's a duplicate.    Their alslo adding email address like my@emailaddress.com and m.y@emailaddress.com, m.y.2@emailaddress.com etc to bypass that comparision also.    Is there anyway to stop this from happening?        

I am inplanting a bonus system to a game i have.
I want to say at first that i am not good at php am reading alot and go by learn by doing.
But after a few hours i kinda gave up.

Here is the code.

The page end up blank.
And i tested so my syntax work $cost and $points with only the db stuff and this code
<div class="yellow_12_bold"><? print (number_format($points)); ?> </div>
<div class="yellow_12_bold"><? print (number_format($cost)); ?> </div>
And it does.


Anyway here is the code 
Code: [Select]

<?


$dbq = $db->execute("select * from Bonus where username='$username'");
$points = $dbq->fields['points'];
$allpoints = $dbq->fields['points_total'];

 $dbq->close();






if ($cost == "5" && $amount == "3000") {


     if ($points == "5" || $points > "5") {

        $sqlb = "update UserData set turns=turns+'3000' WHERE turns < 50000 and location != '9' and frozen = '0'";
        $result1 = mysql_query($sqlb);

        $sqlc = "update Bonus set points=points-'5' WHERE username = '$username';
        $result2 = mysql_query($sqlb);


        $points2 = ($points - 5);

           <p align="center" class="black">Thank you! 3000 turns have been added to everyone.
           You have <div class="yellow_12_bold"><? print (number_format($points)); ?> </div> bonus points left. </p>
}
            else {  <p align="center" class="black">Sorry you dont have $cost points. You have <div class="yellow_12_bold"><? print (number_format($points)); ?> </div> bonus points left.</p>
}



} ?>

Trying to pass VARS $URL1 and $type to header location.Heres the code.

Code: [Select]
$URL1 = $_POST['url'];
$type = $_POST['type_request'];

session_start();
$string = strtoupper($_SESSION['string']);
$userstring = strtoupper($_POST['userstring']);
session_destroy();   

if (($string == $userstring) && (strlen($string) > 4)) {
header("Location: $success");
exit();
The VARS come from a FORM and then go to this script for checkind data. I need to have them continue to the next page.