It's fixed. Thanks, Roel. >> I don't yet know why, but the following line in Secret.php causes >> the problem: >> >> (function setKey under else from the first if statement) >> $key = $_COOKIE[$keyname . '_key'] = session_id(); >> >> if it's changed to: >> >> $key = session_id(); > > Okay, I've changed it back - how's it now? >