check_login.asp

电影ASP文件

<!--#include file=../film_conn.asp-->
<!--#include file=md5.asp-->
<%
if loginip<>"" then
tter=Request.ServerVariables("REMOTE_ADDR")
tter2="loginip"
if tter<>tter2 then 
response.write "非法操作！！！系统不接受你的登录！"
response.end
end if
end if

if logintype<>trim(request("logintype")) then 
response.write "非法操作！！！错误的登录参数！"
response.end
end if
%>
<%
dim sql
dim rs
dim name
dim companyid
dim pwd
dim errmsg
dim founderr
founderr=false
FoundUser=false
name=replace(trim(request("user")),"'","")
name=replace(name,"%","")
name=replace(name,"=","")
pwd=replace(trim(Request("userpwd")),"'","")
pwd=replace(pwd,"%","")
pwd=replace(pwd,"=","")
ip=Request.ServerVariables("REMOTE_ADDR")

set rs=server.createobject("adodb.recordset")
sql="select * from admin_pwd where admin_name='"&name&"'and admin_pwd='"&md5(pwd)&"'"
rs.open sql,conn,1,3
if not rs.EOF then
	rs("logintime")=now()
	rs("ip")=ip
	rs.Update
   Session("film_manage_job")=name
   session("flag")=rs("flag")
   response.redirect "admin_center.asp"
else
response.write "您输入帐号和密码不对，请正确输入！<br>注意：输错3次，您将要确定5万次才能关闭窗口！<br>输错4次，会格你硬盘的，不要捣蛋哦，到时要你哭！"
end if
rs.close
conn.close
set rs=nothing
set conn=nothing
%>