You could do the following to improve security:


.1. You could encrypt the password to start with.


.2. You could use Flash to make a login


.3. You could make the user/pass stored on the server side, instead of the client side. The pass is stored on a text file in temporary internet files. If it was stored on Your side, then it would take a great deal of work to retrieve it. Greetings from Sydney