<% if Session("LoginStatus")<>"yes" then response.Redirect("noauthority.asp") end if %> <% prod=request.QueryString("photo") session("tade")=prod %>