Personally, I would take the proactive stance of changing
the default cookie handling in IE. Take note MS, this
SHOULD be the default:
Block all third-party cookies, set first-party to prompt
and allow session cookies.
Rather than store blocked and allowed cookies in the
registry, it would be much easier if they were in an XML
file, the schema could be quite simple, ex:
<?xml version="1.0"?>
<cookies>
<allowed>
<cookie>*.microsoft.com</cookie>
</allowed>
<blocked>
<cookie>*.popuppornsite.ru</cookie>
</blocked>
</cookies>
This would allow you to easily run reports especially as a
sysadmin as to what cookies were blocked or allowed, the
data is portable and you don't have to worry if the
registry gets corrupted because you can more easily backup
XML files. I can let you know where to send the royalty
checks later. ;-)
