I am using ASP .NET membership provider to authorize my users into application. I would like to use password recovery question-answer scheme to decide whether to allow a user to change a particular data after he has logged in. Is there a way to compare user input to password recovery answer...