John Morton writes: > I was looking at the code for the admin cgi in search of a good cookie > authentication system, and found out that it was doing this, [etc] > Any better suggestions? A quick glance at the WWW security FAQ suggests a good solution: http://www.w3.org/Security/Faq/wwwsf7.html#Q66 John.