Hmmm... upon further inspection, it appears that something is putting a space before Set-Cookie: in the response header. Here's what I got when I used my magic request application written by a man I met in the subway one day:

GET /index.pl?user=antirice&pass=something_or_another HTTP/1.1
Host: lyrics.batkins.com

HTTP/1.1 200 OK
Date: Fri, 22 Aug 2003 01:24:00 GMT
Server: Apache/1.3.27 (Unix) mod_auth_passthrough/1.6 Chili!Soft-ASP/3
+.6.2 mod_log_bytes/1.2 mod_bwlimited/1.0 PHP/4.3.2 FrontPage/5.0.2.25
+10 mod_ssl/2.8.14 OpenSSL/0.9.6b
 Set-Cookie: lyr_bat=antirice-some_pass_md5_checksum; domain=lyrics.ba
+tkins.com; path=/; expires=Fri, 22-Aug-2003 01:34:11 GMT
Transfer-Encoding: chunked
Content-Type: text/html; charset=ISO-8859-1
[download]

Check out the version of CGI you are using. I'm using 2.81 and it doesn't have such a space. Of course, it may be from the server string before it. Either way, this is probably the cause.

Hope this helps.

antirice    
The first rule of Perl club is - use Perl
The ith rule of Perl club is - follow rule i - 1 for i > 1