<%Response.Buffer = True%> <%Response.Expires = 0 uname = Request.Form("user_name") password = Request.Form("password") If Request.ServerVariables("HTTP_METHOD") = "POST" Then accessUserDB = "data/db4.mdb" strUserConn = "PROVIDER=Microsoft.Jet.OLEDB.4.0;DATA SOURCE=" strUserConn = strUserConn & server.mappath(accessUserDB) & "" Set DataConn = Server.CreateObject("ADODB.Connection") DataConn.Open(strUserConn) 'response.write strUserConn' msql = "SELECT * FROM USERS Where UNAME ='" & LCASE(uname) & "'" Set RS = DataConn.Execute(msql) If RS.EOF Then UniqUname = False Else UniqUname = True If Ucase(password) = Ucase(RS("upassword")) then Session("UserID") = RS("ID") Session("UserName") = RS("UName") Session("FirstName") = RS("UFirstName") Session("LastName") = RS("ULastName") Session("Firm") = RS("UFirm") MySQL = "SELECT TimesStamp, UserID FROM LoginLog WHERE TimesStamp = '" & date() & "' AND UserID = " & Session("UserID") & " AND Status = 'Success'" Set MyCountRS = DataConn.Execute(MySQL) intCount = 0 If MyCountRS.EOF Then intCount = 0 Else Do Until MyCountRS.EOF intCount = intCount + 1 MyCountRS.MoveNext Loop End If If intCount >= RS("MaxLogins") Then StrBody = StrBody & RS("UFirstName") & " " & RS("ULastName") & " has breached the login count. " & VBCRLF StrBody = StrBody & "The threshold for this customer is: " & RS("MaxLogins") & VBCRLF StrBody = StrBody & "This account is registered under: " & RS("UFirm") & VBCRLF StrBody = StrBody & "Time of occurence: " & Now() & VBCRLF StrBody = StrBody & "No more log entrys will be made, please contact this customer." & VBCRLF StrBody = StrBody & "Login Name:" & RS("Uname") & VBCRLF Set objCDOMail = Server.CreateObject("CDONTS.NewMail") objCDOMail.From = "application@land-title.com" objCDOMail.To = "sysadmin@land-title.com" 'objCDOMail.To = "info@land-title.com" objCDOMail.Subject = "Login Count Breached For " & RS("uFirstName") & " " & RS("uLastName") objCDOMail.Body = StrBody objCDOMail.Send Set objCDOMail = Nothing Set RS = Nothing DataConn.close Set DataConn = Nothing Session("MSG") = "Your account has exceeded the maximum number of successful logins for today.
Please try again tommorrow." Response.Redirect "login.asp" End If strDate = Date() MySQLlog = "INSERT INTO LoginLog (UserID,TimesStamp,IPAddr,Status) Values (" & RS("ID") & ",'" & strDate & "','" & request.servervariables("REMOTE_ADDR") & "','" & "Success" & "')" DataConn.Execute(MySQLlog) Set RS = Nothing DataConn.close Set DataConn = Nothing Session("SearchesDone") = "" Session("PropertysViewed") = "" Response.Redirect "properties.asp" Else If Session("MyLoginCounter") = "" Then Session("MyLoginCounter") = Cint(0) End If intCounterMan = Session("MyLoginCounter") 'Response.Redirect "http://www.msnbc.com/" Session("MyLoginCounter") = intCounterMan + 1 strDate = Date() MySQLlog = "INSERT INTO LoginLog (UserID,TimesStamp,IPAddr,Status) Values (" & RS("ID") & ",'" & strDate & "','" & request.servervariables("REMOTE_ADDR") & "','" & "Failure" & "')" DataConn.Execute(MySQLlog) If Cint(Session("MyLoginCounter")) > 2 Then Session("MyLoginCounter") = "" Response.Redirect "http://www.land-title.com/" End If End If End If If UniqUname = False Then NoNameFound = "Either your User Name or your Password were not valid!
Please Retry." else NoNameFound = "Either your User Name or your Password were not valid!
Please Retry." End If Set RS = Nothing DataConn.close Set DataConn = Nothing End If If Session("MSG") <> "" Then strError = Session("MSG") Session("MSG") = "" End If %> Land Title of Walla Walla County, Inc
 





Client Login Form
<%=NotValidPassword & " "%> <%=NoNameFound & " "%> <%=EPassword & " "%> <%=strError%> <%=Request.QueryString("msg")%>
 
UserName:
Password:
 
 

<%IF Session("PWDCounter") > 2 Then%> Forget your password?<%END IF%>

 


33 East Main St. Walla Walla Washington 99362 Ph: (509) 529-4600 Fx: (509) 529-4603