Also worth noting that you need at least 2 dots in the cookie domain for it to be considered valid: http://stackoverflow.com/questions/1134290/cookies-on-localhost-with-explicit-domain
Only hosts within the specified domain can set a cookie for a domain and domains must have at least two (2) or three (3) periods in them to prevent domains of the form: ".com", ".edu", and "va.us". Any domain that fails within one of the seven special top level domains listed below only require two periods. Any other domain requires at least three. The seven special top level domains are: "COM", "EDU", "NET", "ORG", "GOV", "MIL", and "INT".
Yes, except for: