You have to check for the cookies on every page not allowed I guess. I usually write som generic printHeaders() sub that I call with arguments to check stuff. If the other pages are static html pages I would use the webservers security features instead.


/brother t0mas