We've just upgraded to the 250 user chat, and are currently letting our mods run amok with it. The issue that a few of us kicked around a few hours ago is the potential for attacks to be launched through the chat feature. This is, unfortunately, something we have to worry about, as our community is regularly targeted for that sort of thing.
The other concern we have is SQL injection. We didn't try this one for obvious reasons, but if chat flooding is so easily done, we're worried there may not be anything in place to guard against this, either.
Are there steps I can take to lock things down enough to protect us from the more common variety of malicious behavior?