Why can't you "afford" using a cookie for this? You're going to find things are going to be a little more difficult when you do it this way. I was also under the impression ASP used cookies for its session variable.