a) when i open the tmp/ dir I se the cookie named with the session-id. When i open this cookie I see the content of my vars...
eg a simple counter says "count|i:14;". What is stored on the client side. Is 14 stored? Then it would be a bad idea to hide a password/username in a session-var. Or is it only the sessionid?
b) Beside this my computer acts weird - I think so!!! I've tried to check out these things myself. But I can not see my session-cookie (explorer in c:\win\cookie) or (netscape in c:\programs\netscape\cookie.txt). But it works anyway and I am not using the SID-var, so it should be based intirly on cookies.
