Thanks for the other points, I'll take a look on it. I rebuilded this stuff by using CGI::Session now. It works fine, and I'm actual just saving the username and a sessionID to validate the user on every page.