There doesn't appear to be anything wrong with the code you presented. I just tried it by setting $password and $dbpw to the same value, and the encrypted values are both the same. I would image the problem is either in the database retrieval routine or the comparison routine.

Perhaps you can provide more code or a more detailed explanation.