| If you specify "expires", you are specifying a persistent cookie,
| one which gets stored to disk. Without "expires", you are asking
| that the cookie only be stored in memory during the browser session,
| and I would not expect it to be subject to the same cookie security.
| In fact, if Netscape doesn't work like this, I'd be bummed.
Netscape works the same way but has less pitfalls. In Netscape you have two
options: just "On" and "Off". In IE, it is more configurable, but at the
same far more obscure what is going on with cookies, thanks to all these
different "Security Zones" under the Tools -> Options -> Security panel. By
default, it selects the medium level for the Internet Zone, which means,
volatile cookies are accepted, and persistent cookies are prompted for.
After having seen the warning 3 times I guess most people click on "disable
this warning" and all persisitent cookies are silently ignored forever.
Ime
