maybe you have already seen this one some news sites, but this
document on "Session Riding"  IMO discusses a very important
security issue with web based applications like you all probably
develop with Webware, too, and it shines new light on the Cookie vs.
URL-session debate. Essential reading!
Frank Barknecht _ ______footils.org__