hi,

I'm here have a question about password protection. For the password protection, we can use database drievwn method whereby the user passwords are saved in the database. Another method is using ASP scripting for password protection, for me I feel that it is not save as the ASP file which content the password might view by others people, for instance, others user who use my PC.

Please advice!

one way is to encrypt the password before saving to the database. Then during authentication, you decrypt the password from the database and compare against the user input. You can make your own encrypt/decrypt method.

You could "encrypt" it by using the asc and chr commands in asp. So you could covert each letter into its ASCII number (using asc ) then add 128 to it. Then covert it back into a letter by using the chr command. Then to decrypt it, get a letters ASCII number and if it is above 128, you know you need to decrypt it.