You can use a .htaccess file. That is the most secure way of password protecting the admin directory.
You should ask you webhost how to use a .htaccess file. I think the procedures may differ slightly depending on the server.
[This message has been edited by t_dog (edited July 03, 1999).]