> From: Frank <framar@interlog.com> [snip] > I'm both a security and privacy freak. Is there another way of > passing the ID & Token with no cookies, and no visible URL hidden form fields... but then every link has to be some sort of form submit, and there is no session timeout in the standard sense... and if someone views the source, it's all there...