I'm not sure if I understand completely...are you saying that
if a user logs in, and than waits...and you restart the ColdFusion
server, on their next request they appear to have assumed someone
elses session?
Session data cannot persist between server restarts, since
session data is always stored in memory on the ColdFusion server.
Have you looked into using "client" vars at all?