checkpass.asp

个人网站系统,本人基于第三方源码进行更改!

<!--#INCLUDE FILE="Common/Inc_DatConn.asp"-->
<!--#include file="Common/Inc_Function.asp"-->
<%
'┌─  风云ASP在线  ────────────────────────┐
'│                                                                 │
'│  作者：赵振波.	http://www.fyasp.com	    				    │
'│                                                                 │
'│   Q Q：176189168  										   	    │
'│                                                                 │
'│ Email：fy96@163.com                                             │
'│                                                                 │
'│ 程序定做，系统开发，网站制作，提供高质量的网络产品、技术和服务！│
'│                                                                 │
'│【版权声明】                                                     │
'│                                                                 │
'│     本程序版权归坐看风云所有，未经授权擅自修改、复制或散布本程序│
'│                                                                 │
'│的部分或全部，将承受严厉的民事和刑事处罚，对已知的违反者将给予法 │
'│                                                                 │
'│律范围内的全面制裁。对非法使用此程序所造成的一切后果本人概不负责!│
'│                                                                 │
'└───────────────────  http://www.fyasp.com ──┘
%>
<%
'/验证系统用户账户及管理密码/
Dim rdsMember    	'/创建会员账号访问对象/
Dim sqlMember       '/创建SQL语句/
Dim strMember   	'/会员账号/
Dim strPassWord  	'/管理密码/
Dim sqlUpdateMember
strMember =Replace(Trim(Request.Form("Member")),"'","")
strPassWord = Replace(Trim(Request.Form("Password")),"'","")
dim lailu           '/提交来路/
strMember =changechr(Request.Form("Member"))
strPassWord = changechr(Request.Form("Password"))
lailu=Request.ServerVariables("HTTP_REFERER")
yuming=request.servervariables("server_name")
if InStr(""&lailu&"",""&yuming&"")>0 then

set rdsMember = Server.CreateObject("ADODB.Recordset")
sqlMember = "Select * From Dat_Member Where Member = '"& strMember &"'"
rdsMember.Open sqlMember,Conn
if not rdsMember.EOF then
	if strPassWord = rdsMember("PassWord") then
		if rdsMember("State") = 0 then
			Session("boobuser") = strMember
			Session("boobpass") = strPassword
			Session("intMemberKey") = rdsMember("MemberKey")
			Session("gqjb") = rdsMember("jb")		
			
			sqlUpdateMember = "Update Dat_Member Set LoginCount = LoginCount + 1 Where MemberKey = "& rdsMember("MemberKey") &""
			Conn.Execute sqlUpdateMember
			
			Response.Redirect "index.asp"
		else
			Response.Write "<script>alert(""\对不起！您的会员帐号已被禁止登录，请与管理员联系！"");window.location='Javascript:history.back()';</script>"
		end if
	else
		Response.Write "<script>alert(""\您输入的密码不正确，请重新输入！"");window.location='Javascript:history.back()';</script>"
	end if
else
	Response.Write "<script>alert(""\您输入的会员帐号不存在，请重新输入！"");window.location='Javascript:history.back()';</script>"
end if
rdsMember.Close
set rdsMember = nothing
else
	Response.Write "<script>alert(""\本站拒绝远程登录！"");window.location='Javascript:history.back()';</script>"
end if
%>