post_password)) // if there's a password { if($_COOKIE['wp-postpass_' . COOKIEHASH] != $post->post_password) // and it doesn't match the cookie { ?>

This post is password protected. Enter the password to view comments.

writes:
at   
comment_approved == '0') : ?> Your comment is awaiting moderation.
comment_status) : ?> Comments are closed