The only way I know of to control this sort of functionality with PHP sessions is to setup your own custom session handler (PHP 4.0.1 or greater I think).

Check out the custom handler session_set_save_handler() in the PHP manual. It has a pretty good example of setting up custom functions to handle sessions. You can link these to a database and store extra information (such as an IP address or user_id) to try and make sure you have only 1 session running at once.

Oh, and this won't prevent them from opening more windows (which is entirely up to the user), it's only really useful for ensuring the same person isn't operating more that one account at a time. There may be some javascript that will allow you to control the number of windows a user can access your site through, but I haven't come across anything...

If people open up 4 windows at a time, how would that consume more bandwidth? The browser would normally cache all/most of the graphic files, and I'm sure they can only view and operate one window at a time. If something like that is causing you to run out of bandwidth I reckon it's time to change hosts.

I think JavaScript could do it -- since all pages belong to the same domain, you can name windows somewhat, and then use JavaScript to assign correct name to current one, and if it exceeds limit then say something to user.

But IMO trying to fight users preferences is a bad move, it just pisses people off. Make sure you have gzip compression enabled as it can cut down on HTML transfers 4-5 times.