login.asp
<% @LANGUAGE=VBScript %>
<TT>
<%
Dim pass
pass = Request.Form("pass")
If Request.Form("go") = "True" AND (pass = "---WACHTWOORD---" OR pass = "---WACHTWOORD2---") AND Request.QueryString <> "" Then
Session.Timeout=1
Session("login") = True
Session("pass") = "correct"
Response.Redirect Request.QueryString
Else If Request.Form = "" AND Request.QueryString <> "" Then
%>
<FORM ACTION="?<%= Request.QueryString %>" METHOD="post">
<INPUT TYPE="hidden" NAME="go" VALUE="True" />
<INPUT TYPE="password" NAME="pass" />
<INPUT TYPE="submit" VALUE="Login" />
</FORM>
<%
Else
%>
ERROR
<%
End If
End If
%>
</TT>

logout.asp
<%
rsvsa = Split(Request.ServerVariables("URL"), "/")
If rsvsa(UBound(rsvsa)) = "logout.asp" Then
Session.Abandon
%>
<SCRIPT LANGUAGE="JavaScript">
setTimeout("go()", 2500);

function go()
{
  location.href='/';
}
</SCRIPT>
You can't see the files in this directory anymore...
<%
Else
%>
<INPUT TYPE="button" VALUE="Logout" ONCLICK="location.href='logout.asp';" /><% If lb = True Then %><BR><BR><% End If %>
<%
End If
%>

protect.asp
<%
If session("login") <> True AND session("pass") <> "correct" Then
If Request.QueryString <> "" Then
Response.Redirect "login.asp?http://" & Request.ServerVariables("SERVER_NAME") & Request.ServerVariables("URL") & "?" & Request.QueryString
Else
Response.Redirect "login.asp?http://" & Request.ServerVariables("SERVER_NAME") & Request.ServerVariables("URL")
End If
End If
If lb = True Then
%>
<!--#include file="logout.asp"-->
<%
End If
%>