<% '************************************************************************** ' This type of script becomes more useful and managable when you are ' comparing these values to those stored in a database or some other source ' of user information instead of hard coding them into the actual code. ' Just be sure that if a data source error arises you don't inadvertantly ' end up giving access to the pages you are trying to protect! '************************************************************************** If Request.Form("login") = "admin" AND Request.Form("password") = "shan1978" Then Response.Write "This is all the cool stuff we are trying to protect!" ' Response.Redirect "http://al-akkas.netfirms.com/cgi-bin/admin_mailing.php" Else Response.Write "Access Denied!" '***************************************************************** ' Note: we don't use the next line so that our description below ' the script comes in. If you wanted to just stop everything here ' you would un-comment the next line and it would stop execution. '***************************************************************** 'Response.End End If %>

Login:
Password:

Hint: Both the login and password are 'Guest'. Note that they are CaSe SeNSiTiVe!