How do you take the text that's in a texbox and format it so that you can't perform a SQL injection attack? As it is now if you input a search string like "x' or '1=1" in a textbox on my page, serious problems could occur. How do I prevent this?