Crude, but it should be somewhat effective. It is also important to make sure that the data submitted via the form is thoroughly validated before you execute the logic of the form. Otherwise an attacker could insert unexpected commands into the form that can cause issues with the server.

__________________
The best way to learn anything, is to question everything.
Interestingly Average Security Blog