Is this Login System Secure

Anon

<?
if($action=="**") {
if($adminpassword == "***") {
setcookie ("adminloggedin", "yes", "+3600");
header("Location: index.php");
}else { echo "Wrong password";}}

if($action == "logout") {
setcookie ("adminloggedin", " ", "-3600");
header("Location: index.php");
}else{}
?>

First is that secure if not can someone give me the code to make it secure??

Next Can someone show me what code to use to grab the users information once they have loged in EG: welcome <a href="$profile">$whoeverlogedin</a>

if someone could help me with that i would be greatfull

thefury

You should set the admin password md5ed in a cookie.
$pass = md5($adminpassword);

setcookie ("adminloggedin", "$pass", "+3600");

if(md5($the_admin_pass) == $adminloggedin) {
echo 'Sup admin';
}

Anon

sorry can you explain that a bit more??

Anon

is that the same with loging out??

eg for the whole script

<?
if($action=="**") {
#####################################
$pass = md5($adminpassword);
#####################################
if($adminpassword == "***") {
setcookie ("adminloggedin", "yes", "+3600");
header("Location: index.php");
}else { echo "Wrong password";}}

if($action == "logout") {
setcookie ("adminloggedin", " ", "-3600");
header("Location: index.php");
}else{}
?>