Comments on: Symantec: Mozilla browsers more vulnerable than IE
But the security specialist also finds that Microsoft's browser is the only one widely exploited by hackers today.
Most Popular
Latest tech news headlines
- Reporters' Roundtable podcast: Elements of tech design
January 8, 2010 11:59 AM PST
- Affinion stops buying credit-card info from e-tailers
January 8, 2010 11:47 AM PST
- Can Microsoft be lust-worthy?
January 8, 2010 10:02 AM PST
- See all headlines
RSS Feeds
Add headlines from CNET News to your homepage or feedreader.
More feeds available in our RSS feed index.
- Markets
Related quotes
It looks to me more like a one sided report trying to make open source look less secure than closed source. Not having read the report it sounds like what it might be saying is that flaws are easier to find in open source than in closed source.
Without consideration for how long each browser took to fix the flaw and the number of exploits before a patch was released this report just doesn't look like much to help a user or company make an informed decision on what browser to use (if that was the purpose of the report). Like I said though I haven't read the report and you can't go by what the press says, so it maybe just the oppisite of that.
- Speed of which bugs are fixed in terms of the complexity of the architecture. (e.g., fixing bugs in Notepad vs. Visual Studio)
- Quality of fix in terms of whether the bug is cerified not to affect other features or third-party applications. (Imagine if an IE fix actually disabled Microsoft Office! Havoc!)
- Quality of support in terms of providing help and documentation to the end-users, whom apply the patches. (ISO:9000)
It looks to me more like a one sided report trying to make open source look less secure than closed source. Not having read the report it sounds like what it might be saying is that flaws are easier to find in open source than in closed source.
Without consideration for how long each browser took to fix the flaw and the number of exploits before a patch was released this report just doesn't look like much to help a user or company make an informed decision on what browser to use (if that was the purpose of the report). Like I said though I haven't read the report and you can't go by what the press says, so it maybe just the oppisite of that.
- Speed of which bugs are fixed in terms of the complexity of the architecture. (e.g., fixing bugs in Notepad vs. Visual Studio)
- Quality of fix in terms of whether the bug is cerified not to affect other features or third-party applications. (Imagine if an IE fix actually disabled Microsoft Office! Havoc!)
- Quality of support in terms of providing help and documentation to the end-users, whom apply the patches. (ISO:9000)
They will do anything to keep people using Windows and IE...more
profit.
Like you said, more users of IE, more market for Symantec.
They will do anything to keep people using Windows and IE...more
profit.
Like you said, more users of IE, more market for Symantec.
No matter what internet browser is placed on top if Windows,
the cracks or hooks in this operating system are still present no
matter what browser is used.
Sure, Firefox browser doesnt have as many pre-built hooks
down into Windows as Internet Explorer does, probably because
reverse-engineering Windows code is against the law for them,
but if the bricks of this Internet house are built on top of
Windows, there is only so much protection you can have.
The ultimate goal would be for MSFT to build a true Internet OS,
one that is not for the desktop, does not have hooks to DCOM,
or .exe, or Active-X. Until Windows is locked down, by design,
from the start, no browser will be able to protect PC users from
the features Windows offered to businesses for tying data
together, that are subsequently used by the hackers to tie the
hooks into a "web" of unintentional process calls and backdoor
traps.
Using a more secure OS from the beginning is the only solution,
and with Bill Gates screwing his unknowing customers any
chance he gets, this will not happen anytime soon.
What a shame as we waste countless hours and billions of
dollars while he got the fortunes by making a horses rump of
you with his desire to stop Netscape at any cost; lets just mash
IE into Windows.
Although Gates is dumb, he is betting that many others are
dumber than he is, thus they keep buying Windows.
Microsoft has the burden of maintaining compatiblity with Windows code that predates the Internet era and its risks.
What is Mozilla's excuse?
sudden demise of Bill Gates/WINDOWS
sudden demise of Bill Gates/WINDOWS
The problem seems to reside more in the
"cattle herd" mentality of the American people,
even though the cut-throat practices of Bill Gates
are not to be denied. If Bill/WINDOWS perished
tomorrow, would we be able to accelerate the
development of LINUX to replace WINDOWS, any more
than we could accelerate billions of dollars of
relief to the victims of Hurricane Katrina at
New Orleans?
As a mathematician/chemist/electronics
engineer, I can only comment about the disapproval
of my purchase of a 2000 HONDA Insight. I was
told how stupid it was to buy untried motor-based
technology, even if we've known how to wind a
motor since the beginning of the last century.
Five years later, modulo a small amount of
aftermarket modification (AMSOIL synthetics
in place of "genuine HONDA"), here I am getting
as much as 90.0 mpg @ warm weather/level highway
cruising, while the rest of you are green with
envy as you get pummelled with wild fluctuations
of gasoline prices.
Analogously, we can talk about the better
security accoutrements of LINUX/UNIX, but I don't
suppose that we can expect LINUX to take the
place of WINDOWS until China and a lot of other
nations adopt LINUX and thereby force the hand
of the United States to do likewise.
No matter what internet browser is placed on top if Windows,
the cracks or hooks in this operating system are still present no
matter what browser is used.
Sure, Firefox browser doesnt have as many pre-built hooks
down into Windows as Internet Explorer does, probably because
reverse-engineering Windows code is against the law for them,
but if the bricks of this Internet house are built on top of
Windows, there is only so much protection you can have.
The ultimate goal would be for MSFT to build a true Internet OS,
one that is not for the desktop, does not have hooks to DCOM,
or .exe, or Active-X. Until Windows is locked down, by design,
from the start, no browser will be able to protect PC users from
the features Windows offered to businesses for tying data
together, that are subsequently used by the hackers to tie the
hooks into a "web" of unintentional process calls and backdoor
traps.
Using a more secure OS from the beginning is the only solution,
and with Bill Gates screwing his unknowing customers any
chance he gets, this will not happen anytime soon.
What a shame as we waste countless hours and billions of
dollars while he got the fortunes by making a horses rump of
you with his desire to stop Netscape at any cost; lets just mash
IE into Windows.
Although Gates is dumb, he is betting that many others are
dumber than he is, thus they keep buying Windows.
Microsoft has the burden of maintaining compatiblity with Windows code that predates the Internet era and its risks.
What is Mozilla's excuse?
sudden demise of Bill Gates/WINDOWS
sudden demise of Bill Gates/WINDOWS
The problem seems to reside more in the
"cattle herd" mentality of the American people,
even though the cut-throat practices of Bill Gates
are not to be denied. If Bill/WINDOWS perished
tomorrow, would we be able to accelerate the
development of LINUX to replace WINDOWS, any more
than we could accelerate billions of dollars of
relief to the victims of Hurricane Katrina at
New Orleans?
As a mathematician/chemist/electronics
engineer, I can only comment about the disapproval
of my purchase of a 2000 HONDA Insight. I was
told how stupid it was to buy untried motor-based
technology, even if we've known how to wind a
motor since the beginning of the last century.
Five years later, modulo a small amount of
aftermarket modification (AMSOIL synthetics
in place of "genuine HONDA"), here I am getting
as much as 90.0 mpg @ warm weather/level highway
cruising, while the rest of you are green with
envy as you get pummelled with wild fluctuations
of gasoline prices.
Analogously, we can talk about the better
security accoutrements of LINUX/UNIX, but I don't
suppose that we can expect LINUX to take the
place of WINDOWS until China and a lot of other
nations adopt LINUX and thereby force the hand
of the United States to do likewise.
https://ses.symantec.com/content.cfm?articleid=1539
https://ses.symantec.com/content.cfm?articleid=1539
makes fairly good virus protection software, but other than for
MS products, the need for Symantec's programs is quite low.
With no threat, no sales.
As reported: "Symantec admitted that "at the time of writing, no
widespread exploitation of any browser except Microsoft
Internet Explorer has occurred," but added that it "expects this
to change as alternative browsers become increasingly widely
deployed.".
Can't blame them for trying to pump sales. But we don't have to
pay any serious attention to their rather obvious marketing
maneuvers.
makes fairly good virus protection software, but other than for
MS products, the need for Symantec's programs is quite low.
With no threat, no sales.
As reported: "Symantec admitted that "at the time of writing, no
widespread exploitation of any browser except Microsoft
Internet Explorer has occurred," but added that it "expects this
to change as alternative browsers become increasingly widely
deployed.".
Can't blame them for trying to pump sales. But we don't have to
pay any serious attention to their rather obvious marketing
maneuvers.
"Mitchell Baker, president of the foundation, said earlier this year that its browsers were fundamentally more secure than IE. He also predicted that Mozilla Foundation browsers would not face as many problems as IE, even as their market share grows."
Mitchell Baker is a woman:
http://tinyurl.com/dd9tm
Good way to check the sources!
"Mitchell Baker, president of the foundation, said earlier this year that its browsers were fundamentally more secure than IE. He also predicted that Mozilla Foundation browsers would not face as many problems as IE, even as their market share grows."
Mitchell Baker is a woman:
http://tinyurl.com/dd9tm
Good way to check the sources!
During the last two years, several friends have solicited my help repairing their computers after receiving trojans through IE or Outlook Express. Trojans are at epidemic proportions right now and MS is slow fixing the vulnerabilities because they don't have any competition.
BTW, my favorite browser is currently Opera. http://opera.com/
During the last two years, several friends have solicited my help repairing their computers after receiving trojans through IE or Outlook Express. Trojans are at epidemic proportions right now and MS is slow fixing the vulnerabilities because they don't have any competition.
BTW, my favorite browser is currently Opera. http://opera.com/
13+18=31 for MS IE
25+ 3=28 for Firefox
By my count, you are only 3 better.
The reality is many components in Open Source projects are written by very small teams or even a single individual and code reviews are only done when problems surface with application testing.
I'm not knocking Open Source (I have actually worked on three projects). I'm just tired of people overhyping technology. Its a complex application made by humans...there will be problems.
13+18=31 for MS IE
25+ 3=28 for Firefox
By my count, you are only 3 better.
The reality is many components in Open Source projects are written by very small teams or even a single individual and code reviews are only done when problems surface with application testing.
I'm not knocking Open Source (I have actually worked on three projects). I'm just tired of people overhyping technology. Its a complex application made by humans...there will be problems.
ive noticed not just symantec but several other companies bad mouthing firefox for the last couple of months ever since they broke the 15% marketshare usage barrier
its like somone is afraid ;)
well if you are realy wanting tobe secure you can use the updated CVS versions of Mozila and firefox updated almost every day
to keep up with all the security problems or do like i do and grab the most recent major revision when ever an update is available
ive noticed not just symantec but several other companies bad mouthing firefox for the last couple of months ever since they broke the 15% marketshare usage barrier
its like somone is afraid ;)
well if you are realy wanting tobe secure you can use the updated CVS versions of Mozila and firefox updated almost every day
to keep up with all the security problems or do like i do and grab the most recent major revision when ever an update is available
those flaws are patched...and if they were taken advantage of is
entirely different.
As we all know.. Microsoft is in the habit of waiting until it is too
late.
Plus... there were 10,866 new Microsoft Windows virus and worm
variants in first half 2005... scary.
- Apples & oranges
- by dam7ri September 19, 2005 2:47 PM PDT
- What everyone fails to realize is that Symantec found 25 flaws in the first 6 months of this year, in Firefox. How many flaws have been found in IE, since its release? What version of IE are we on now, and we are still dealing with the same flaws as the previous versions. Let's not even take into account the length of time that we are exposed to vulnerabilities, with IE. Firefox gets fixed, quickly.
- Like this Reply to this comment
-
-
- You make a good point.
- by September 19, 2005 2:54 PM PDT
- Looking at the number of flaws is one thing..... looking at how fast
- Like this
-
Showing 1 of 3 pages (123 Comments)those flaws are patched...and if they were taken advantage of is
entirely different.
As we all know.. Microsoft is in the habit of waiting until it is too
late.
Plus... there were 10,866 new Microsoft Windows virus and worm
variants in first half 2005... scary.