Y
Hacker News
new
|
ask
|
show
|
jobs
by
kijin
4735 days ago
Oh, I see. A separate cookie makes it easier for you to check for compromised sessions. I suppose you could also do that with regular session cookies if you keep good track of identifier history, but it'd be a lot more hassle.