Well, I'm using this method, right now:
- When user A signs up, a new row is added to the MySQL table with their info.
- They have a unique ID number assigned to them(3,4,etc) that auto-increments.
- I then encrypt their ID number, using a cryptsalt of x. This becomes their unique session ID.