I have created a webiste that requires user authentication and login. This site was created in Dreamweaver 8 running on IIS 5.1. The user accesses the site, types in a pre-assigned password and user ID and is admitted to the site. All pages within the site are restricted if there is not a properly authenticated user session. My question is, is this enough security or should I do something else to make sure this site is not accessible to anyone who does not have the appropriate credentials?