Recently, there has been a spout of attention about how to deal with eval(base64_decode("blah")); style attacks. A number of posts about "The Dreaded eval(base64_decode()) – And how to protect your site and visitors" have appeared lately. They have been suggesting how to mitigate the attacks. This is downright bad.