StuWhite - 10:48 am on Aug 8, 2007 (gmt 0)

Wait a minute! I just reread your post - How did you enable/disable cookieless sessions? Are they enabled by default?

No, they aren't enabled by default. I can't quite remember how I did it initially.

I asked matt on this and he replied that Google was aware of this and it would not cause isues with the algo.

Well they may be aware of it but that doesn't seem to stop them spidering the one page dozens of times a day using different session variables and including them all in their index as different pages. MSN and Y! do the same.

If you are talking about the case insensitive problem with IIS that is a very old problem. IIS has been that way from the beginning.

Don't you mean the case sensitivity problem with Apache? :-)

I'm not too certain it is really something to worry about right now. I'm sure it will get noticed by MS and investigated.

I just tested my site and found that:

[mysite...] returns a 404

but

[mysite...]

takes me to the default page.

It would appear that my server is checking that the session variable is exactly 24 characters.

I know that this didn't used to be the case. Perhaps this has just come about in a recent update to the .Net framework...