mySQL anti injection

nice sinppet

$name_evil = mysql_real_escape_string($name_evil);