The company I work for wants to protect files in a directory from unauthorized visitors - only customers etc. should have<BR>access to this stuff. In the directory are mostly PDFs containing product info, and we were going to bundle this whole thing with an e-commerce site. However, we&#039;d like to get this out there now before the e-commerce portion of our site. The<BR>idea floated was to password protect the pages in Frontpage, but I didn&#039;t think that was the best idea...I thought something more secure would be good. So, I thought some sort of ASP user verification / password deal would be great. But I saw most of these scripts required the code be put in every document, and, most of it didn&#039;t look all that secure. So I found this<BR>article about creating my own ActiveX DLL with ASP and HTML to tie to it. I would like to know if I have the concept down right:<BR><BR>I was told I need to have a dedicated server because most webhosts don&#039;t allow custom DLLs. Is this true? Let&#039;s say I can find a webhost that allows this. I guess the files - pdf, etc. - would be located in a folder not accessible<BR>via the Internet (by a browser). The ASP, using the ActiveX DLL would prompt for a username and password, and if correct, pass the files from the hidden / protected location to web browser. Is this right?<BR><BR>My three questions:<BR><BR>1) Should I A) Get the general code from an explanation article to web programmers to improve and customize it or C) get the whole thing outsourced? How much is a good cost? How safe is this?<BR><BR>2) Could this be [somewhat] easily imported into an e-commerce system (one that uses user-authentication, order history, etc.) that we would like to launch? Could I link the password and username info to the e-commerce ones, so entering one gets you access to both?<BR><BR>3) For simple protection, why not use a passworded .htaccess file plus some asp to support it? I know that&#039;s a pretty cheesy question, but it seems like that way, you can&#039;t pull anything out of the directory. Why isn&#039;t this a used way to do things (aside from the files being on the web)?<BR><BR>Thanks so much!!!! I&#039;m not sure if this copies to my inbox too, but if have the chance, please also email me the answers to Thanks again!<BR><BR>Bill S.<BR>