--- functions-orig.php	2004-01-02 00:01:06.000000000 +0200
+++ functions.php	2004-01-02 00:35:17.000000000 +0200
@@ -22,17 +22,18 @@
 	mysql_connect($dbhost, $dbuser, $dbpw) or die(mysql_error());
 	mysql_select_db($dbname) or die(mysql_error());
 	
-	$sql = "SELECT * FROM " . $tablepre . "users WHERE username = '" . $check . "'";
+    $sql = "SELECT *, PASSWORD('" . $pw . "') AS pwcrypt FROM users WHERE username =  '" . $check . "'";
 	$result = mysql_query($sql) or die(mysql_error());
 	$row = mysql_fetch_assoc($result);
+
 	
-	if ( $row["password"] == $pw ) {
+	if ( $row["passwd"] == $row["pwcrypt"] ) {
 	
 		if ($register) {
-			$HTTP_SESSION_VARS["authdata"] = array("login"=>$row["username"], "password"=>$row["password"], "userlevel"=>$row["user_level"], "uid"=>$row["uid"]);
+			$HTTP_SESSION_VARS["authdata"] = array("login"=>$row["username"], "password"=>$pw, "userlevel"=>1,  "uid"=>1);
 		}
 		
-		return $row["userlevel"];
+		return 1; 
 	}
 
    	unset( $HTTP_SESSION_VARS['authdata'] );