I was looking at the Java client and I was wondering if this is true from the server perspective, it appears there’s a 1-to-1 between connection and server session. I know that sessions though remain even after all connections are closed. So can you just pass in the

sessoinId

in to any connection? Is the session ID unique enough not be a security concern. For instance if you make a connection to Nebula can somebody guess a

sessionId

just be doing

YIELD 1

statements?