Hi,
I have read that some security experts question the use of session ids over the internet.
Is this really a practical problem?
Thanks, regards Paul