Comments on: SP2 vs. the plug-ins

Sites and software that depend on ActiveX may falter under Microsoft's new security regime.

Alternative

Instead of switching from ActiveX to .Net, perhaps developers should consider switching to technology that is both cross platform and cross browser compatible. I currently use Firefox in both Windows and Linux. If their content won't display there, I'll never see it.

how about..

how about instead of replying to every internet explorer / windows thread with an unhelpful suggestion of swapping to linux/firebird you try to be a little more constructive? What is right for you is not right for the next person.

I'm sure many people would applaud your suggestions, and the obvious intellect you think have over most other people purely because of a preference in open source software. However i do not. Past experiences with bad security in active-x and other microsoft specific technologies may have tainted your views of overall security with microsoft, but at least they are attempting to fix these issues (even if that means hard choices), and for the most part they are resting the onus of potential security risks firmly where they belong - on the users' shoulders. Microsoft still has some work to do on subsequent versions of internet explorer. I for one hope they suceed - a more secure browser which supports all of the wonderful technologies that other browsers do not has to be better than the alternative you suggest?

although i seriously doubt that any linux user will ever conceed a feature rich secure browser would ever be better than their beloved firefox.

[alek_nedic]

from ActiveX to .Net

http://www.analogstereo.com/volvo_owners_manual.htm

ISV have made thier beds

By not developing or help develop in an open structure, ISV have limit themselves and have given Microsoft the control of their products. ISV should really look into a cross platform structure. If not Microsoft can develop similar products to compete and have ISV's pay to allow them to run or turn them off completely.

hrmmm,

two examples given in the story - web delivered games, and 3d plugins - both of which microsoft has an interest in (game studios, and 3d api's), and as yet we have seen no such monopolisation by microsoft which you hint at, and i doubt we will not for the forseeable future.

A fair point about cross platform, although one could argue with microsoft having such a large percentage of the desktop, and internet browser market ISV's are aiming for the largest proportion. Most of the larger and well known browser plugins are operating system and browser independant.
More of an issue is the trust factor behind delivering content in this manner. I personally do not trust most sites which automatically attempt to install any kind of plugin or browser addon, this includes macromedia. Microsoft's initiative in alerting the end user to the potential security and privacy risks they are opening themsevles to by instintively installing any browser addons should be seen as a good thing in the long term, not only from a security stand point, but also in allowing ISV's to gain much needed trust from customers, and a loyal fanbase (good products, word of mouth, etc)

[mpotter28]

not just isv's

The customer is just as bad for allowing certain firms (not just m$) to dictate standards to us. Even if your avg. customer isn't qualified to discuss the topic at hand the government has the ability and the duty to gather competent , impartial people to set the standard(s) and to inform people when a corporations product does not meet the standards for the applicable area

Be careful what you ask for...

... cuz you just might get it... for years people have been complaining that ActiveX and some other plug-in's are a security nightmare waiting to happen. You complain and shout that MS needs to take a harder stance with ActiveX and with security. Finally, after years of waiting, they finally do, and all you can do is complain? This drama over SP2 is getting a bit ridiculous. Look, I'm no big fan of MS and I spend time every day looking at alternatives when it's appropriate, but in the interest of being fair, all this complaining about SP2 is a joke. MS took some good first steps and did what we asked them to do: make IE more secure and reign in ActiveX. Now you want to complain about it?

Like I said: Be careful what you ask for.