I have a small web site and would like to include a family page with a secure password. By secure I mean one which, at the very least, cannot be seen within the HTML code. Can anyone help?

Probably the simplest way to deal with "restricting" access to a known group of people, is by using JS, of course this is my suggestion in keeping with my Keep-It-Simple filosofy.
All you need to do is name your html file in itself to a very obscure bunch of characters, have the script read the "password" and open up the appropriate window, if the pwd is wrong then an error page is opened. The obvious advantage is that there is NO mention of the target page under any circumstance.
If you find this idea acceptable, post here, and I can help you with the JS, if u dont already know it.

Cheers

Check your email, I sent you the JS code for doing what you want and a small explanation on how to use it.

------------------
Rick

>> -- <<
The solutions to todays problems,
Are the problems of tomorrow.

RH WebWorx - Site Creators (http://www.total.net/~hallrm)

Thanks Rick. I have received your email and I will try out the code that you provided.

Ex-Static-Cling,

I am interested in your suggestion. Would it be possible for you to provide some details or better yet the code?

[This message has been edited by Roberto (edited 06-30-2000).]

If you want a secure method, and your host supports it, use CGI scripts instead. It's more secure than JS, and some JS can be bypass simply by disabling it in the browser.

Here are some sites for obtaining CGI scripts:
http://www.hotscripts.com/ http://www.cgi-resources.com/ http://www.perlarchive.com/

Rick,

Thanks again for the code. It works great. However, I don't know how secure it is. Do you have any idea how difficult it would be to avoid? Robo555 (see post) suggests that it can be avoided by disabling javascript in the browser. What are your thoughts?

Since the code I sent is used on its own web page, then turning off JS in the browser will not allow anyone to bypass it. They just will not be able to access your site unless they know the actual address of one of your web pages.

------------------
Rick

>> -- <<
The solutions to todays problems,
Are the problems of tomorrow.

RH WebWorx - Site Creators (http://www.total.net/~hallrm)

Rick,

Thanks for the good news about disabling javascript.

One more question. When I enter the wrong password, it returns with the usual web page not found message. This is a clue that the script is looking for a web page. Is there any way to return a message that the password was invalid?