[]Is the key stored in the session if the user does not choose to be remembered?[/]Mmm. Good question. It LOOKS like the session associated with the ID in w3t_mysess needs to match up with the user number in w3t_myid. (My code above is from an internal admin util I made for my moderators, and all of them log in w/ Remember Me... never really had think about that. Hmm.)
[]I guess I don't understand how a user could be logged in with the wrong password[/]Hackers - fear'em.
