if you can get away with it, you could also use cookies. You could use one of the more elaborate session modules. or you could write your own quick and dirty (which hides rm altogether from users) of storing rm and instance info to little files on the server in a temp directory.