> > Massimo pointed out a flaw in my solution in that it would create an > ever-growing number of session variables and would be vulnerable to a DoS > attack. >
Maybe by default it could cycle through a small number of formnames (e.g., _formname = _formname + '_1', etc.). So, for any given base _formname, there could be up to, say, 5 distinct formnames in the session, which would allow the user to open a handful of browser windows and be able to submit from any of them. Anthony
