I working On an online banking project where the client needs to be doubly sure of the security.<BR> What I have done is with the help of severvariable http_referer<BR> i force the user to follow the flow of the asp pages.<BR> I have the asp page which creates an instance of an com object <BR>which exposes the tcp/ip an dother important stuff.<BR> Can somebody guide me on more security issues whcih as a programmer i have to take care either in asp pages or on the iis<BR>server,etc<BR><BR>Thanks In Advance<BR>Aman<BR>