diff -upr d5/includes/session.inc d5-new/includes/session.inc
--- d5/includes/session.inc	2007-07-26 21:16:45.000000000 +0200
+++ d5-new/includes/session.inc	2008-05-10 21:58:44.000000000 +0200
@@ -30,6 +30,7 @@ function sess_read($key) {
 
   // Otherwise, if the session is still active, we have a record of the client's session in the database.
   $user = db_fetch_object(db_query("SELECT u.*, s.* FROM {users} u INNER JOIN {sessions} s ON u.uid = s.uid WHERE s.sid = '%s'", $key));
+  $sid=$user->sid;
 
   // We found the client's session record and they are an authenticated user
   if ($user && $user->uid > 0) {
@@ -48,6 +49,7 @@ function sess_read($key) {
   else  {
     $session = isset($user->session) ? $user->session : '';
     $user = drupal_anonymous_user($session);
+    $user->sid=$sid;
   }
 
   return $user->session;
Only in d5-new/includes: .svn