>>>>> "Douglas" == Douglas Sims <ratsb...@gmail.com> writes:
Douglas> I've tried to follow the philosophy that Randal Schwartz described in Douglas> a recent thread here - a cookie is just a serial number for a Douglas> browser. By rotating the cookies often we're hoping to avoid Douglas> problems with stolen or leaked sessions and by storing the previous Douglas> session id (if there is one) with every new session we're planning to Douglas> be able to build a linked list of session activity which we can Douglas> correlate with specific users who log in at any part of that linked Douglas> list. That's an interesting idea... brand the browser, but rotate it from time to time, maintaining a list. Thanks for suggesting that... I'll have to explore that in some future project. -- Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777 0095 <mer...@stonehenge.com> <URL:http://www.stonehenge.com/merlyn/> Smalltalk/Perl/Unix consulting, Technical writing, Comedy, etc. etc. See http://methodsandmessages.vox.com/ for Smalltalk and Seaside discussion