Are you using the CGI module? If not - you really should be. Look into CGI::Session - it takes care of all the hard stuff for you.