Implements the domain/IP session qualifiers so that only the major domain is used to qualify the session ID. This is a compromise on security, but it allows non-cookie-accepting browsers like AOL's V2.0 to use multiple proxy servers. Default is yes.
DomainTail No
If you are encrypting your credit cards with PGP or GPG, or are using a payment service like CyberCash, you may want to look at the WideOpen directive, which enables more browser compatibility at the cost of some security.