The "redirect" instruction forms a HTTP header, but you're already printing an HTTP header in your script, before you check the password value. perldoc CGI says:

# The redirect() function redirects the browser to a
# different URL.  If you use redirection like this, you
# should not print out a header as well.

I suggest you move the &submit_parameters routine up to just below $query = new CGI. Bear in mind that you're invoking the script srice, once to print what's effectively a static page, and once to process the result; you might want to consider using a static HTML page to contain the form, and restricting your script's functionality to input-checking and redirection

Hope this is of some help.

Roger Burton West