[eluser]Aquillyne[/eluser]
I've tried writing my own library, but I'm struggling over a few things.
I want something VERY simple - the user enters the right, hard-coded password, he gets through to the page. That's it. I don't want to connect to any database. There's no username. It's just a page with a hard-coded password.
How can I lock the user out (stop him from even
trying to log in) if he gives the wrong password more than, say, 5 times? The only way I can see of doing this is via a session variable, but that's not particularly secure because he could just clear his cookies and try some more. Any ideas?