2005-12-24 Preventing Http session fixation attacks sec http://www.hackerscenter.com/archive/view.asp?id=21242