public bool CheckPassword(string user, string password)
{
byte[] unibytes = encoder.GetBytes(password);
//byte[] hash = md5.ComputeHash(unibytes);
User tmpUser = GetUser(user);
if(tmpUser == null) return false;
return (tmpUser.Password == password);
}