Preface: Smart people, try not to make fun of me too much.
That said, I'm developing a little online community site, and i need to use a cookie-based user management system ( server side sessions arent gunna cut it for what i have in mind )
I know that cookies and 'security' dont exactly go hand-in-hand, but i also know a lot of you have had experience with them.
any advice this forum could offer on the topic of user id cookies and security matters would be appreciated. A simple little block of code for after-form-post excecution wouldnt hurt either. Cookie expiration time updating on each and every page isnt an issue for me... i just need an 'on until logout requested' cookie.