Is that platform specific?

 

Spot on Iain, the fact of the matter is all programs use the Win32 API and its well documented and any program can access any functions in the API to do all sorts of nasty things.

I agree Steven it is a bad design. Strictly speaking its not integrated with the OS its integrated with the 'shell' and IE is just a stub exe that wraps explorer.exe which can do the damage. The shell itself can bring down the OS when it shouldnt do. Fact is the whole OS is message based with no authentication of messages being passed between windows which is a major security flaw discovered years ago that has never been addressed!

Gary

 

wow...i started this thread as a simple question caterpillar and its grown into a big geeky butterfly

 

 

Firefox users were exposed to more vulnerabilitys for a longer period of time last year when compared to IE users, I can't see this year being any different, in fact it'll probably be worse. IE users in general are more straight laced, less likely to install programs or visit dodgy web sites. IE is more secure than Firefox, but it doesn't have tabs and it's made by Microsoft.

 

I think it was windows only...

 

thats what happens when you venture into 'computer related' tiggs

 

I'm sorry but this is tosh

 

I'm hoping his tongue was firmly in his cheek

 

I did wonder, but part of the statement was also true

 

In the cheek, but not firmly. The fact you're using Firefox shows you've installed a program. Those who never install programs are subject to less risk. A search for Firefox in Google brings up a number of dodgy web sites. IE was less of a risk last year than Firefox. Yes it's tosh in the grand scheme of things, but fun to bull**** about.

 

remember that intruder software will never have more rights on the system than you do. do you *always* need to be 'Administrator' level? I got this tip from the security guru at MS.

makes the security aspect less important when choosing your browser.

I use avant browser now - v good.

 

What JackClark said basically

Windows is the dominant system, therefore if you are writing an exploit, you write one that applies to the most systems and gives you the greatest chance of breaking in. MS hasn't exactly helped itself over the years, with its rather lax attitude to security, but it is a victim of its own success.

If Apple was the dominant system, you would have found the same thing - possibly not to the same degree or variety that you find with Windows, but you would know of more exploits then you do now.

There has been a change and we've seen (my day job is IT security) an increase in the expolits aimed specifically at Firefox and the Apple OS - this is in direct relation to their increasing popularity - not because they are any more or less secure than the equivalent MS products.

So what you use if up to you - just don't believe that any product is 100% secure.

Incidently, have a look at the Beta 2 release of IE 7 - it looks a lot better, it's pretty quick and you get tabbed browsing

 

A very good point (and mentioned in the Computer Security Guide at the top of this forum!)

 

I have all browsers installed, but still stick to IE for normal browsing.

Set MS products up properly and they work fine and bug free for years, blindly install stuff on your PC and you have problems.

From a developers viewpoint, I find IE the easiest browser to develop for as it does exactly what yuo ask it to do. FF is also good with Netscape average and Opera a right old pain in the ****.