> The login form is not on a secure page but if make the > form action go to a secure page like: <form > action=https://www.domain.com/form.cgi > does the form > submit the information securely? no, all data will be sent in clear text. You must use https on the page where the secure transfer is to originate (the login page). aleem [ http://members.evolt.org/aleem/ ]