would need to be able to verify the authentication
hash.
Once again, thanks a lot to all who have taken time to help me out. I got quite
a bit of information, and lots of things to study, mostly stuff that's
completely new to me. So it'll take a while until I can s
ed on the web. Therefore we ask for
help.
br,
flj
PS: reusing the session ID is of course a security risk, since it could allow
session hijacking. We're aware of this, but don't intend to do anything about
it other than warn customers/users. Since it's a web application, its cli
