Thread: [RESOLVED] Working with user logon sessions

I'm putting together a website that requires users to login with a username and password in order to access certain parts of the website. Can anyone point me to some resources that will help answer the following questions:

1. Best way to store and transmit username/passwords in a SQL database
2. Should the passwords be encrypted prior to sending them to the SQL Server for verification? Best method?
3. How do you store the user login information in their session state?
4. How do I secure pages so that if a user is not logged on, they cannot access them?

A little bit more information about the site I'm building. It's a website for my family to share information about current events with the rest of the family. They want the login as a security measure because they are worried about privacy, plus they want to be able to maintain family profiles with current information (i.e. mailing address, phone numbers, etc.) and this way only their family will be able to edit that information. Due to the constraints of my web host, I don't believe there is a way for me to get a security certificate on the server so logging in via HTTPS is a non-starter for me. Lastly, I'm writing this in ASP.NET with C# code-behind so if you have links to any samples it would be great if they were written in C#. Thanks in advance for any help you're able to offer.