Scenario: ASP/SQL server 7.0<BR>1. On the index.asp page if the UserID & PWD matches (are exactly same), then a Change Password screen should popup and the userId will<BR>change the Password. and when he clicks on submit, I am invoking<BR>sp_password stored Procedure (SQL server inbuilt proc) and it updates fine and the user will be redirected to success.asp page. So far so good.<BR><BR><BR>Problem: But if the user goes back to index.asp page using Back browser<BR>button, and enters Old UserID & Password(which has been modified couple of secs ago) it still goes to Change password screen. This happens only for couple of mints but if I try a little later it works fine.<BR><BR>Could somebody suggest me something. I don&#039t know why ASP behaves so <BR>weirdly.<BR><BR>Index.asp code:<BR><BR>application("strConnection") = "driver={SQL Server};SERVER=WEB;uid=" & Request.Form("UserID") & ";pwd=" & Request.Form("Password") & ";DATABASE=test"<BR>conn.Open application("strConnection")<BR> <BR> <BR>select case Err.number<BR> case 0<BR> if Ucase(Trim(Request.Form("UserID"))) = Ucase(Trim(Request.Form("Password"))) then<BR> session("old_pwd") = Request.Form("Password")<BR> Response.Redirect "./ChangePwd.asp" <BR> else<BR> Response.Redirect "./success.asp"<BR> end if <BR> <BR>End Select<BR> <BR> conn.close<BR> set conn = nothing<BR><BR>ChangePwd.asp:<BR>set conn = server.createobject ("adodb.connection")<BR>set rsAlias = server.CreateObject ("adodb.recordset")<BR>conn.Open application("strConnection")<BR> <BR>strCommand = "EXEC sp_password &#039" & session("old_pwd") & "&#039, "_<BR>& "&#039" & Request.Form("txt_Pwd2") & "&#039"<BR> <BR> strCommand, conn<BR>session("strConnection") = "driver={SQL Server};SERVER=WEB;uid=" & Request.Form("UserID") & ";pwd=" & Request.Form("txt_Pwd2") & ";DATABASE=test" <BR> <BR>Response.Redirect "./success.asp"<BR>