The page
https://developer.mozilla.org/en/Creating_Sandboxed_HTTP_Connections
is quite good for explaining how to create sandboxed HTTP connections
but in my humble opinion it does a poor job at explaining how to
really sandbox the request so that it doesn't use already stored
session information.
The only explanation is to use an observer which removes the cookies
when they are received but then I find this as not a very complete
solution because it will potentially break other extensions. For
example, if a user is using LiveHttpHeaders or Firebug, or any other
request debugging functionality he/she will see responses which has
been tampered with which in turn will make debugging very difficult.
What I am trying to figure out is how to make a request without
supplying cookie information and without affecting the session storage
of the browser ... but also without affecting perfectly working
extensions which may depend on having the un-tampered requests/
responses.