The answer may be to wade into the P3P waters.

Microsoft reference [microsoft.com]

By default, Internet Explorer 6 opts me out of receiving cookies from third party sites that don’t have a compact privacy policy available. The browser disallows third party cookies that use personally identifiable information without asking. Additionally, first party cookies that use personally identifiable information without implicit consent are restricted. The P3P or Platform for Privacy Preferences is the standards model which determines the parameters for acceptability of cookies.

Can someone tell me what the difference is between third party and first party cookies?

One concern that comes to mind is when people shop our ecommerce site. We need to send cookies so that we can add items to thier shopping carts. Unless we tag them, each time they add an item, they are assigned a new shopper id.

I would have a hard time believing that Microsoft would not be allowing these cookies to be added. That would put a big damper on ecommerce in general.

As I understand it, if an affiliate passes a cookie from your merchant site to his vistor it's a third party transaction. If the visitor went to your site directly and received a cookie that would be first party.

>I would have a hard time believing that Microsoft would not be allowing these cookies to be added. That would put a big damper on ecommerce in general.

It's a done deal. Though I think the default setting only raises an alert box the first time and then the red "minus" icon in the task bar thereafter.

You type in a url to the address bar. Where ever that ends up at, that is the first party. Any inserted content that does not come from that specific domain, is third party.

Make sure all your cookies are sent from the page/domain you want to set. Also, do the p3p thing.

More info can be found Here [msdn.microsoft.com]

No wonder we have been having problems with our sites!