For security reasons, most web browsers only accept cookies coming from the domain you are browsing, and only return them to that domain.

So, if the user is browsing www.mynewwebsite.com, you should set the cookie domain as .mynewwebsite.com, and you'll only be able to retrieve that on the server side if the user is browing that domain.

Hope this info can be of some help to you!

Michele.