I want the customer to pay first. I have set up my paypal button to return them to the memberinfo.asp page to fill in their name and password. I had originally set up the memberinfo.asp page with the security-check in place, however, when I tested my paypal button it took me to the login.asp page for members. As they have not yet filled in the memberinfo.asp page, they don't have a username and password set up. So, I took out the security-check on this page but now anyone can access the memberinfo.asp page. So, what I want to do is set up a newMemberSecurity-check.asp. This page would not say check if username="" and so on, but would say something like "access to this page can only be made when it comes from the Paypal address". Maybe asp cannot do this but I thought if it could that it would be the simpliest way to handle new member registration.