diff --git a/auth.cfg.dist b/auth.cfg.dist
index 8524dd7..238393e 100644
--- a/auth.cfg.dist
+++ b/auth.cfg.dist
@@ -1,3 +1,4 @@
+STRIP_RE = r'[()"\'&|<>=~!]+'
 LDAP_URL = 'ldap://ldap.hackerspace.pl'
 DN_STRING = 'uid=%s,ou=People,dc=hackerspace,dc=pl'
 FAIL_DELAY = 0.5 
diff --git a/auth.py b/auth.py
index 0bc1b39..fb0a457 100644
--- a/auth.py
+++ b/auth.py
@@ -32,8 +32,9 @@ def irc_nick():
     conn.start_tls_s()
     login,code = '', 401
     try:
+        nick = re.sub(app.config['STRIP_RE'], '', request.form['nick'])
         res = conn.search_s(app.config['IRC_BASEDN'], ldap.SCOPE_SUBTREE, 
-                app.config['IRC_LDAP_FILTER'] % request.form['nick'])
+                app.config['IRC_LDAP_FILTER'] % nick)
         if len(res) == 1:
             login = res[0][1]['uid'][0]
             code = 200