some checks on server side

html/pubkey.php

@@ -1,6 +1,6 @@
 <?php
-require_once("usertable.php");
 try {
+  require_once("usertable.php");
   $user = $db->real_escape_string($_REQUEST['user']);
   $q = $db->query("select pubkey from user where name='$user';");
   if ($q->num_rows==1) {