i'm planning on implementing a 'remember my login' feature in a project i'm working on. is the sesssion key unique enough to be used as a persistant cookie to uniquly identify clients across multiple sessions?
if so, does this just apply to tomcat or is this part of the spec and container independent? thanks, ~scott
