> 1) Do you have an application that can't deal with the separate Cookie
> header lines? I could change that fairly easily if needed but since (I
> think) the RFC allows it, I'm wondering if there's any need for it.

This is not an issue for me (probably you can mix up me and Andrey Stebakov (= )

> 2) What are the rules for cross-domain cookies? Are the user agents
> expected to accept random cross-domain cookies? I've not found any
> definite reference regarding this, any information would be helpful.

It's my mistakes they called cross-subdomain cookies.
You can look at cookies for google.com for example. But RFC for this cases are
http://www.ietf.org/rfc/rfc2109.txt?number=2109 section 4.3
and also this tutorial http://www.15seconds.com/issue/971108.htm

-- 
Andrey Larionov