I'm trying to do password authentication against a database, but I'm making it so if the PASSWORD field for a given username in the database is empty, that user is able to log in without entering a password. Sounds simple? I'm having problems.<BR><BR>The main problem is making ASP detect and accept that a null database field is empty.<BR><BR>rs("password") = ""<BR>doesn't work - it's false even when the database field IS empty.<BR><BR>rs("password") is null<BR>doesn't work - gives an "Object Required" error. how do I use this?<BR><BR>len(rs("password"))<BR>does VERY weird things; instead of returning 0, it returns nothing at all. Shouldn't it always return an integer? What's wrong here. On the other hand, trying to test len(rs("password"))="" doesn't work either.<BR><BR>I'm using this on an Access database, the password field type is TEXT, on IIS5/Windows 2000.