diff --git a/index.js b/index.js
index 1d69c9299f19c4edfbd66d35f6965b9782daf2ce..1f73294dc230a5bc8c1bc3238a020388c146f405 100644
--- a/index.js
+++ b/index.js
@@ -35,6 +35,7 @@ var REG_ADDR_FILE = "contractAddress.txt";
 var REG_ABI_FILE = "contractABI.json";
 var REG_ADDR = "0xe53cb2ace8707526a5050bec7bcf979c57f8b44f";
 var REG_ABI = [{"constant":true,"inputs":[{"name":"_a","type":"address"}],"name":"name","outputs":[{"name":"o_name","type":"bytes32"}],"payable":false,"type":"function"},{"constant":true,"inputs":[{"name":"_name","type":"bytes32"}],"name":"owner","outputs":[{"name":"","type":"address"}],"payable":false,"type":"function"},{"constant":true,"inputs":[{"name":"_name","type":"bytes32"}],"name":"content","outputs":[{"name":"","type":"bytes32"}],"payable":false,"type":"function"},{"constant":true,"inputs":[{"name":"_name","type":"bytes32"}],"name":"addr","outputs":[{"name":"","type":"address"}],"payable":false,"type":"function"},{"constant":true,"inputs":[{"name":"_name","type":"bytes32"}],"name":"subRegistrar","outputs":[{"name":"o_subRegistrar","type":"address"}],"payable":false,"type":"function"},{"constant":false,"inputs":[{"name":"_name","type":"bytes32"},{"name":"_a","type":"address"}],"name":"reserve","outputs":[],"payable":false,"type":"function"},{"constant":false,"inputs":[{"name":"_name","type":"bytes32"},{"name":"_owner","type":"address"},{"name":"_a","type":"address"}],"name":"reserveFor","outputs":[],"payable":false,"type":"function"},{"constant":false,"inputs":[{"name":"_name","type":"bytes32"},{"name":"_newOwner","type":"address"}],"name":"transfer","outputs":[],"payable":false,"type":"function"},{"constant":false,"inputs":[{"name":"_name","type":"bytes32"},{"name":"_registrar","type":"address"}],"name":"setSubRegistrar","outputs":[],"payable":false,"type":"function"},{"constant":false,"inputs":[],"name":"Registrar","outputs":[],"payable":false,"type":"function"},{"constant":false,"inputs":[{"name":"_name","type":"bytes32"},{"name":"_a","type":"address"},{"name":"_primary","type":"bool"}],"name":"setAddress","outputs":[],"payable":false,"type":"function"},{"constant":false,"inputs":[{"name":"_name","type":"bytes32"},{"name":"_content","type":"bytes32"}],"name":"setContent","outputs":[],"payable":false,"type":"function"},{"constant":false,"inputs":[{"name":"_name","type":"bytes32"}],"name":"disown","outputs":[],"payable":false,"type":"function"},{"constant":true,"inputs":[{"name":"_name","type":"bytes32"}],"name":"register","outputs":[{"name":"","type":"address"}],"payable":false,"type":"function"},{"anonymous":false,"inputs":[{"indexed":true,"name":"name","type":"bytes32"}],"name":"Changed","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"name":"name","type":"bytes32"},{"indexed":true,"name":"addr","type":"address"},{"indexed":false,"name":"owner","type":"address"}],"name":"PrimaryChanged","type":"event"}];
+var NAME_VALIDATOR = new RegExp('^[a-z0-9-_]{3,32}$');
 
 var account;
 var regContract;
@@ -141,6 +142,14 @@ function initContract() {
     });
 }
 
+function checkName(name) {
+    try {
+        return Boolean(name.match(NAME_VALIDATOR));
+    } catch (e) {
+        return false;
+    }
+}
+
 function isHashZero(h) {
     return !h || h == "0x" || h == "0x0" || h == "0x0000000000000000000000000000000000000000";
 }
@@ -268,6 +277,10 @@ function startServer() {
                 http_res.status(400).end(JSON.stringify({"success": false, "error": err}));
                 return;
             }
+            if (!checkName(req.params.name)) {
+                http_res.status(400).end(JSON.stringify({"success": false, "error": "invalid name"}));
+                return;
+            }
             console.log("Got reg request (" + req.params.name + " -> " + addr + ") from " + req.body.owner);
 
             reg.owner(req.params.name, function(err, owner) {