MySQL Query Problems

I need help, I am building a simplae login area for my site, and is this query correct?

SELECT id FROM user WHERE user_name = '$username' AND pass = '$password';

because I am getting successful logins from it, even when the user doesn't exist.
Any Help would be appriciated, thanx.

the query seems to be ok, I'm sure your problem is in your php code.

Post it here so we can tell ya.