OPiuM -- Option Portfolio Manager is a little project I had been working on in my spare time to keep track of my various stock option grants and to know when they're due to vest, how much they'll be worth, how much I'll have if I hang out till they're fully vested, etc... I can't stress enough that I went through great pains and jumped through various hoops to make this as secure as possible. ALL your info is encrypted using the password you choose. Therefore, NOBODY, not me, not Alex, not root, not a court order, not nobody can get your info out without that key (so don't loose it or forget it either). The password/key is also encrypted with a one way hash algorithm, so nobody can view that either. The Account Number itself is a unique 10 digit randomly generated number, so it would be nearly impossible for someone to guess. Nobody can even view the tables and see which tables link to each other. This in effect slows down the database because it has to try the key against all other records in the database to see if it unlocks, but with the relatively few records it will have, it's not bad. Worst case we have like a 1000 employees with say 10 grants each, that's still only 10,000 checks. mySQL is fast enough to handle that pretty quickly. TO SETUP A NEW ACCOUNT: If you have a cookie alert setup in your browser, you might notice that I do set a cookie. You will also note that it lasts for only 20 SECONDS. Long enough to take you from the login page to the actual OPiuM.phtml page. I felt it insecure to pass that info on the command line because if you store a bookmark or someone sees your screen, they'd see your password and account number. This way, there is no trace after 20 seconds. (consequently, you may be asked to login again occasionally, depending on how inactive you are). Your email address is required, this is only used ONCE to send you an email to archive your account # and password and NEVER stored in any way shape or form. There is no way to get the information mailed to you again, so do not delete this email, or you'll have to create a new account and start over. Enter a password of at least 5 characters and click NEW. TO LOGIN TO YOUR ACCOUNT: After the account is created, copy and paste the red info into the top boxes and click LOGIN. You'll never be shown that info again and it can not be retrieved by anyone or any thing, so don't forget or loose it. (just use that same account and password to Login next time) If it prompts you again for your login stuff, that means you didn't have your cookie set for some reason -- perhaps you have cookies turned off or something? dunno. The hack work around, which can be insecure is to make a URL of the form: http://daevid.com/examples/content_server/private/OPiuM/OPiuM.phtml?employee_id=123456789&password=SeCR321t where obviously 123456789 is the account number you were given and SeCR321t is the password you chose. If you use this way, please make sure your machine won't succumb to prying eyes... Do not loose the password you chose, it is the key to encrypting all your data and cannot be retrieved by anyone. You'll have to create a new account and re-enter all your data if you do. However, please don't just go adding accounts to the database at random either because I have no way of weeding out dead accounts since they're all encrypted, I don't know which are duplicated or dormant. NOTE: The only real flaw with the logic is that it calculates vesting on a daily basis currently. It doesn't do the 'real' vesting that WT uses -- that is 25% after first year, then monthly afterwards for 36 months. I plan on implementing that method in the near future, but this will give you a pretty good idea of where you stand in any event. enjoy your wealth, Daevid Vincent