[eluser]Phil Sturgeon[/eluser]
Bloody hell I didn't realize!
Oh wait, it says that in the User Guide and I read it 3 years ago... now I remember.
Quote:The Session class permits you maintain a user's "state" and track their activity while they browse your site. The Session class stores session information for each user as serialized (and optionally encrypted) data in a cookie. It can also store the session data in a database table for added security, as this permits the session ID in the user's cookie to be matched against the stored session ID. By default only the cookie is saved. If you choose to use the database option you'll need to create the session table as indicated below.
Note: The Session class does not utilize native PHP sessions. It generates its own session data, offering more flexibility for developers.