<BODY>
<%
name=trim(request("name"))
password=trim(request("password"))
if name="" or password="" then
response.write"<center>用户名或密码不能为空!</center>"
Response.Write"<meta http-equiv='refresh' content='1;url=index.asp'>"
else
set rs = server.CreateObject("ADODB.Recordset")
sql="select * from yhzc where name='"&name&" '"
rs.open sql,conn,3,3
if rs.eof then
Response.Write"<center>用户名:<b>"&name&"</b>不存在!</center>"
Response.Write"<meta http-equiv='refresh' content='1;url=yhzc.asp'>"
end if
do while not rs.eof
if trim(rs("password"))=password then
Response.Write"<center>登陆成功!</center>"
session("name")=name
Response.Write"<meta http-equiv='refresh' content='1;url=index.asp'>"
else
Response.Write"<center>密码错误!</center>"
Response.Write"<meta http-equiv='refresh' content='1;url=index.asp'>"
end if
rs.movenext
loop
rs.close
set conn=nothing
end if
%>
</BODY>
</HTML>