Try out CGI::Session and in that generate session ids using Digest::MD5.
I haven't tried it but i guess its foolproof.