I dont see how that can happen if your cookies are working correctly.
Content visible to verified customers only.
Are you able to replicate the steps of this? We grab a users info if there member_id cookie and password exist and they are checkpassed in and we set permissions accordingly
Also if you do not wish unregistered users to post comments set this to no in edit usergroups in admin.