When the server returns the session cookie, the expiration time is specified as the current time at GMT.
So, if I log in to pkild at 11:40:49 CST on 8/23, the session cookie I get back has its expiration=Tue, 23-Aug-2011 17:40:49 GMT.
Chrome and IE 9 seem to interpret this as a local time-zone time, meaning that the session created in our example won't expire for six hours.
When the server returns the session cookie, the expiration time is specified as the current time at GMT.
So, if I log in to pkild at 11:40:49 CST on 8/23, the session cookie I get back has its expiration=Tue, 23-Aug-2011 17:40:49 GMT.
Chrome and IE 9 seem to interpret this as a local time-zone time, meaning that the session created in our example won't expire for six hours.