[Catalyst] Is Anyone Else Having Trouble With Updated IE8 and Sessions?

Andy Dorman adorman at ironicdesign.com
Thu Mar 3 21:34:37 GMT 2011

We use (and love) Catalyst for our AnteSpam user interface pages.  Specifically 
we use Catalyst::Plugin::Session and Session::Store with a memcache layer on top.

A day or two after Microsoft released a security update on Jan 11, 2011, our 
users that use IE8 started experiencing session-mismatch problems when they 
would try to log in.

The problems all looked as if their session had timed out.  Even after 
completely closing and reopening their browser, they would log in with a valid 
address and password and the sessions IDs would not match.

And the truly strange thing is we stumbled on a work around that works for 
almost every IE8 user.  Keep trying to log in.  The sessions will finally match 
and the log in succeed on the second or third try.  In a few cases, using SSL 
via https also works without requiring three login attempts.

And after succeeding on the second or third try, the log in problems disappeared 
and did not recur, even after logging out or rebooting.

I am just trying to see if anyone else has experienced any similar issues with 
IE* since mid January this year.  If so, did you ever discover what MS changed 
that caused this lunacy?  And if not, then we will have to keep looking for the 

Thank you,

Andy Dorman
Ironic Design, Inc.
AnteSpam.com, HomeFreeMail.com, ComeHome.net

More information about the Catalyst mailing list