I use the login page from here:
http://www.15seconds.com/issue/020220.htm
<!-- Web.Config Configuration File -->
<configuration>
<system.web>
<customErrors mode="Off"/>
<compilation debug="true"/>
<authentication mode="Forms">
<forms loginUrl="FeedBack_Admin/login.aspx" protection="All" timeout="30">
<credentials passwordFormat="Clear">
<user name="admin" password="pass"/>
</credentials>
</forms>
</authentication>
<authorization>
<allow users="*" />
</authorization>
</system.web>
<location path="FeedBack_Admin">
<system.web>
<authorization>
<deny users="?" />
</authorization>
</system.web>
</location>
<location path="Content_Admin">
<system.web>
<authorization>
<deny users="?" />
</authorization>
</system.web>
</location>
</configuration>