Originally Posted by k0nr4d

You could always just disable eval() on your server's php.ini:
disable_functions = eval

I've never seen that used outside of hacking scripts. The general rule of thumb with eval (as a programmer) is that if you ever find yourself having to use it, you did something wrong. They even have a big 'caution' box listed on php.net on that topic:
http://lu.php.net/eval