I'm not sure if this is at all relevant, but a user of a site that I run has recently been having problems logging in using IE5 on Windows 98. When I investigated I found that when she entered her user name and password she was authenticated sucessfully and a session id was generated. This session id was sent as a cookie, but for some reason was not overwriting an old cookie (which contained a session id no longer in the database) with the new value. The only solution that I found was to delete the cookie. I assume that it had been corrupted in some way. Does anyone know if this is a common problem, and if there is anything one can do to avoid it when setting cookies?