When logging out, the cookie is not removed, nor is the session on the server side, so the session continues if you just refresh the page. This is a security risk on a shared computer.
Log in to post a comment.