my ($UserID,$UserState) = $sth->selectrow_array('SELECT ID,State FROM '.$Tablename.
'WHERE username = 0x'.unpack('H*',$uname).
' AND password = 0x'.unpack('H*',$pword));
if ( ! defined($UserID)) {
 # Oops, no UserID means no user with matching username/password was found
} elsif ($UserState eq 'LOCKED') {
 # Oops, this user is not allowed to login
} else {
 # ok, everything right, the user is validated
}