The user should have the option to make the browser forget all cookies on a certain event (e.g. shutdown of the browser, after a certain time or leaving the site). This would allow the website to use "session cookies" - cookies that help to track a certain visit (e.g. for a "cart" on a shopping site) - , but protect the user from the website creating profiles about him, because the website cannot recognize the user on a later visit. I remember a discussion about that some time ago on the newsgroups, but don't rememeber where. The event "leaving the site" could mean "no user-visible browser window shows a page from that site". The setting "session cookie" should be configureable just as the existing cookie options are - globally on/off and per-site on/off. I would appreciate hints about a possible implementation, as detailed as possible.

This appears to be a duplicate of bug 53354. There's been quite a bit of discussion about possible implementations there. *** This bug has been marked as a duplicate of 53354 ***

tnx.