Native (non-web) applications have always been able to access the
client's machine. Web applications have relied on cookies for the
same functionality. Why cookies make us sad:
- ★ burden of sending with every http request
- ★ data sent unencrypted
- ★ limited to about 4 KB of data
- ★ Cookies expire, localStorage does not
- ★ yes they can be turned off...but in Firefox, if cookies disabled, so is Web storage