<i><b>Originally posted by : Paul Davis (pdavis@jlg.com)</b></i><br />I'm very much a beginner at this, so please bear with me!<br /><br />I have a SQL 6.5 database on a NT server which I would like to be "online." I have created some basic ASP's which return data via an ODBC connection (using the SQL ODBC driver). However, I would like the whole process of data retrieval a lot more secure,<br /><br />For starters, my SQL server is set up to use SQL authorisation rather then NT authorisation. The basic ASP's I have written include (in the ODBC connection string) a data source, username and password to log onto my SQL server. What I would like to do is to be able to create an HTM which includes two fields (Username and Password), which an ASP can use to authorise the ODBC connection with my SQL server. Is this possible? And, if it is possible, how can I do it?<br /><br />My other query is when my ASP returned data, data source info, user info, etc was visible when using the View Source option of IE5. How can I make sure no user can see any of this information?<br /><br />Thanks,<br /><br />Paul Davis.<br /><br />