I have an application that, upon successful login, stores the name of the MySQL database and various other values in $_SESSION varibles. There have been several instances where it appears that a user in one database seems to connect to the session of another. The session process that I am using is simple: <?php session_start(); ... and my connections to the database are though: @ $db = mysql_pconnect(host, user, password); mysql_select_db($_SESSION['dbname']); Many of my databases have the same table names, so that a user may see data that should be seen only by another. I am not terminating my pconnect or database queries -- and it seems that the termination of the scripts should all end them cleanly, right? Is there anything that I need to be doing with my $_SESSION that would cause it to work incorrectly? The SESSION stuff has seems to work well, but it pretty much magic to me. Should I store the session values in local cookies rather then on the server (at least, that is where I think that I am storing them)? Do I have to worry about how the server points one session file to another? Is there something that I need to think about regarding the naming of session? Thanks for your help. Mike