Use Internet Explorer 7? Be Very Careful.

[Pickaxe Pete]

You will likely lose your UO account or WoW account, etc., if not very careful.

http://www.dailytech.com/Critical+V...lorer+Found+Patch+on+the+Way/article13712.htm

I recommend using another web browser for a bit, such as Firefox or Opera.

 

[hawkeye_pike]

C'mon, who still uses the IE today? I guess people already know that this browser is a piece of worthless crap.

 

[Pickaxe Pete]

I sure don't use it, but most people still do.

Evidently the patches are up and all versions of Internet Explorer need to be patched.

Got to love it when exploits like this are found and exploited specifically to steal online game passwords......

 

[Nexus]

You will likely lose your UO account or WoW account, etc., if not very careful.

http://www.dailytech.com/Critical+V...lorer+Found+Patch+on+the+Way/article13712.htm

I recommend using another web browser for a bit, such as Firefox or Opera.

People still use IE?

I use FireFox or Chorme. I've tried Opera but it was too similar to FF for me to justify keeping it.

 

[UOKaiser]

I use firefox but unfortunetly Uo patch screen uses Ie found that out the hardway when my UO wouldnt patch after I installed ie7 kept getting script error so I uninstall ie7 reverted to ie 6 and patch when down right. Even though my default is firefox.

 

[Connor_Graham]

C'mon, who still uses the IE today? I guess people already know that this browser is a piece of worthless crap.

The same is said about Firefox and Mozilla. That announcement actually goes on to say how crappy Firefox is for businesses, which is scary to say the least. I use IE myself because I couldn't stand Firefox, and didn't find Mozilla to be much better. I don't use that particular version of IE however. I happen to like IE 6 and plan on sticking with it.

 

[Maplestone]

The patch was already release this afternoon. If you run windows update, you'll get it.

Note that you don't have to be using IE to have been vulnerable to these sorts of issues - a lot of other applications link to IE components to display content (eg: UO patch screen, advertisements in running at the bottom of some IM clients, etc)

 

[ElRay]

The same is said about Firefox and Mozilla.

It sure as hell isnt said by anybody important.

As of December 10, 2008, Firefox 3 has one security vulnerability unpatched according to Secunia.[70] Internet Explorer 7 has ten security vulnerabilities unpatched, the most severe of which was rated "extremely critical" by Secunia.

Secunia is a Danish computer security service provider best known for tracking vulnerabilities in more than 12,400 pieces of software and operating systems.

Firefox>IE

 

[Maplestone]

It sure as hell isnt said by anybody important.

http://isc.sans.org/diary.html?storyid=5506

 

[Infiniti]

There is a patch /fix already for it and I have downloaded it. I don't like Firefox. There will always be people exploiting anything and everything they can no matter what site is used.

 

[Kratos Aurion]

I've always used IE 7 for its convenience. Not for its safety although I do regularly patch it whenever they're available. I've always found Firefox to be one of the most annoying browsers on the net. I'd much rather perfer Opera vs Firefox.

And heres a little story I found about firefox

http://www.insidetech.com/news/arti...y-business-app-list?referral=IT_nlet_20081217

basically the user increase of firefox has inevitably driven up the amount of malware intent. Its becoming more like IE everyday.

 

[ElRay]

http://isc.sans.org/diary.html?storyid=5506

The Washington Post reports that exploit code for critical unpatched security vulnerabilities in Internet Explorer was available for 284 days in 2006. In comparison, exploit code for critical security vulnerabilities in Firefox was available for 9 days before Mozilla shipped a patch to remedy the problem.

I know nothing is perfect though.

 

[Flora Green]

It's good to see we've moved past the Fel vs. Tram and 2d vs. 3d vs. KR debates.

 

[wanderer1origin]

opera is a wondeful tool

It's good to see we've moved past the Fel vs. Tram and 2d vs. 3d vs. KR debates.

 

[Kratos Aurion]

The Washington Post reports that exploit code for critical unpatched security vulnerabilities in Internet Explorer was available for 284 days in 2006. In comparison, exploit code for critical security vulnerabilities in Firefox was available for 9 days before Mozilla shipped a patch to remedy the problem.

I know nothing is perfect though.

I don't think anyones claiming IE is in anyway better than Firefox. Just that IE is much more perfered for its convenience and easibility. Just because Firefox is more secure though doesn't make it any less vulernable. There is a significant amount of exploits available to Firefox and I commend their IT staff for fixing them in record time. But because I can't stand the way Firefox looks and works, I use IE or Opera.

 

[Lord Drakelord]

We use IE7 [Vista], our PC came with it and get patched almost everyday. Got a big one today.

 

[curlybeard]

I use firefox but unfortunetly Uo patch screen uses Ie found that out the hardway when my UO wouldnt patch after I installed ie7 kept getting script error so I uninstall ie7 reverted to ie 6 and patch when down right. Even though my default is firefox.

I don't have IE installed and it patches fine, though I get plain text patch notes from 1999. Kinda funny really.

 

[Maplestone]

I don't think anyones claiming IE is in anyway better than Firefox.

*nods* I'm definitely no fan of Microsoft or of IE's deep tentacles into the OS - I would definitely choose firefox over IE any day of the week. I just think it's important to not get overconfident just because a program is not Microsoft's.

 

[Setnaffa]

I use IE. I actually prefer it to Firefox. I haven't used Chrome of Opera so I can't say anything about them.

Firefox has had far more security issues this past year than IE has so I don't want to hear from anyone saying IE is full of holes. IE is just more in the public eye and Microsoft does a better job of deploying hotfixes out in a timely manner than Mozilla does.

Anyone using IE should definitely patch today. The update can be had at http://windowsupdate.com or or at http://www.microsoft.com/protect/computer/updates/bulletins/200812_oob.mspx

 

[Jirel of Joiry]

Am I the only one who uses Safari? Anyone else tried it?

Its pretty good, I dunno how secure it is but it is a Apple product and most hackers target IE, Firefox, Mozilla etc.

Hard to be a Apple girl in a PC world.

Anyway I patched IE for the boneheads in my house that still use it.

 

[Maplestone]

Unfortunately Apple's reputation for securing and patching safari has not been very good so far. They've been rather fortunate they haven't been targetted.

 

[Jirel of Joiry]

Unfortunately Apple's reputation for securing and patching safari has not been very good so far. They've been rather fortunate they haven't been targetted.

DOH! snap: That's begs the question is there such a thing as a safe browser? (I'm beginning to think not!)

 

[NuSair]

The only reason that FF/Mozilla is more 'secure' than IE is because of it's lack of the market. Even with it's gains in recent years, it still doesn't get enough of the usage to attract the attention of the hackers/malware writers.

Anyone with google and 5 minutes can find 'facts' supporting their case that their browser is more secure and the best.

The best protection for your computer is you. Keep up with the patches, don't click on links in emails, don't visit unfriendly sites, ect. And you will be fine.

About IE's recent patch:
http://blogs.zdnet.com/security/?p=2325

And you thought your browser was secure?
http://blogs.zdnet.com/security/?p=2305&tag=nl.e550

Considering that these FF/Mozilla vulnerabilities were patched on the 16th, I'd say that website that stated it had 1 on the 10th was a little incorrect:
http://blogs.zdnet.com/security/?p=2322&tag=nl.e550

And those were 8 from Mozilla.org

Extreme Severe vulnerabilities in the Opera browser:
http://blogs.zdnet.com/security/?p=2315&tag=nl.e550

Bottom line. Any browser is fine. Just be smart.

For the record, I use IE. And I have also used Opera and FF in the past.

 

[Kratos Aurion]

Bottom line is there is no absolute security on the internet. Everytime you dial in or connect to a modem you're accepting the risk factor for whatever browser you surf with. Like others have mentioned, as long as you're smart about what you do, most of the vulnerabilities wont affect you. And the absolute odds of being hacked through legitiment hacking are less than 0 because 95% of the user base is general usage of the internet. Nothing important. Most skilled hackers are usually jailed trying to hack federal agencies.

 

[daisuke]

lol.

the article that this thread is all about even says firefox is a dangerously insecure program. i dont trust mozillas ability to defend against security exploits if you ask me. at least MS has the budget to resolve issues and gets the patch out within 24 hours or so :/

 

[Pickaxe Pete]

Most browsers are not very secure by themselves, but Google Chrome has a new sandboxing feature that makes it pretty secure. Of course, there is Firefox with Noscript and AdblockPlus. Opera is secure because of its insignificant market share and somewhat decent code. Safari is quite insecure I've read.

 

[hawkeye_pike]

Well, most people use the IE because it comes with Windows.

However Internet Explorer is one of the worst internet applications known to mankind. Every innovation they copy from other browsers comes with a 1 year delay. (Does tabbed browsing give you a hint?) They do not apply to international standards, in fact they invent their own standards to force the rest of the world to use Microsoft products, and they can do that due to their market power with Windows. IE is the least standard conform browser on the market. Ask any web developer, he will swear and curse and explain to you how he hates having to implement dirty hacks to websites so they work on IE, too. (Just say words like hasLayout, Box Model Bug, Peakaboo Bug, Guillotine Bug, 3 Pixel Jog and many others to a web developer, and he will throw things at you!)

Not to mention the great amount of bugs and risks in the IE, not begin fixed and coming back in new versions, and all the ActiveX crap coming from Microsoft opening even more doors for hackers.

I think the most "clean" and standard conform browser is Opera. The most popular alternative to IE is Firefox. Both are a good choice, and there are many other good browsers on the market.

 

[Out of Date]

C'mon, who still uses the IE today? I guess people already know that this browser is a piece of worthless crap.

IE is pretty much just as good as any browser. The whole point of being a safe browser is that you're in a smaller group of users for that particular program. since most malware are written for the ones the majorty uses. The from polls on gaming sites like this one, the majority uses firefox. IE is only the most commonly used browser when you take into account all the people not in the gaming community.

So they're pretty much the same when it comes to safety for your games.
If you're not careful you'll manage to compromise your data nomatter
what browser you're using.

However - since IE has to be updated by mirosoft they're often slow with updates, where the opensource ones are more steadily updated.

 

[DarkChronus]

I use Chrome all the time now. I find it to be an easy to use FAST browser which does exactly what I need it to do. I learned of this vulnerability a few days ago and all the other things I've read about it say that it affects IE5 and up... not just IE7. And from a web developer to the rest of you... please stop using IE5 or 6 if you're still clinging to either of them... at least use IE7, if not Firefox or Chrome.

 

[Heartseeker]

I agree.

Most people think that what is popular is best though.

It isn't.

WalMart isn't the best store to buy; they have the competition wiped out though.

And Mickey D's food is at the bottom of the food chain, but people still go there in droves.

Microsoft has the biggest monopoly going with Windows; and we saw what Vista was like.

Xp shelf life was very long, while Vista is scrapped with the new operating system coming out.

A lot of people use IE because they are used to it, kind of like a old shoe.

There are better browsers out there.

 

[Sweeney]

IE was the slowest browser I have ever used, even on a dual-processor with a lot of options turned off. Reminded me of my dial up days wanting to punch the screen because my browser would lock up for 30 seconds loading.

 

[In Flames]

I used IE for a long time and only in the past year switched to Firefox, and I've got to say, it's nice.

I love the Bookmark toolbar, I keep most of my frequented sites on it (as Icons, no names).

I've also been using the new Bit Defender Game Safe AV software.

It's been working out nicely.

 

[Wenchkin]

Well, as far as I'm concerned folks can either pay attention to the specific vulnerabilities in their browser and choose what's safest for them, or carry on blindly till something goes wrong. Pick your own browser, but if it has a vulnerability that kicks you up the butt, don't say you weren't warned

If you believe IE is safe, that's your call. Personally I don't believe any browser is "safe" just some are less attacked than others, just as some operating systems are targeted more often too. If you pick software that isn't so well known, it's not so likely to be attacked. I think MS software is always going to be a favourite target of hackers, so the chances are you're going to be hit with whatever vulnerabilities are discovered. I wouldn't recommend MS anything for any reason, because it's just too much of a target. 37+

I haven't found myself with any malware issues since I moved to linux, but I didn't just go "hey I'm safe, I installed linux!" You can't have that attitude when you're online. I use a variety of browsers, depending on what I'm doing and what linux distro I'm using. I don't install and forget with any of them though. That's stupid, whatever OS/browser you use.

Wenchy

 

[Old Man of UO]

This is really a pointless and stupid debate, and really doesn't belong in UHall... what does it have to do with UO?

It's the old Mac vs PC, 2D vs KR, 1 vs 2 debate. Pointless in the end.

Some people like IE, some like Firefox or Opera or Chrome or even Linux. All and Every one have some security issues, all and every one have there likes and dislikes. I use IE and Firefox because not every page renders the same in each, and not ever page is written to work correctly in each.

If you want to be absolutely secure with your computer there is only ONE way to do that, and that is to never ever go onto the internet and to never ever load any programs onto it. But you will miss out on the best part of owning a computer. Sure, you need to add firewalls, anti-this-n-that, do back-ups, and make regular patches. It's easier for some people to understand than others and those who understand should help out those who don't. I protect my computer as best as I can, but this debate is really silly.

Sometimes you feel like a nut... sometimes you don't. Almond Joy has nuts... Mounds don't!

 

[Wenchkin]

I believe it was intended as a waring, not the beginings of a flame war. Which is relevant to anyone who plays an online game. But it's Uhall. You can't expect reason or sense with so many raging hormones...

Wenchy

 

[Sarphus]

DOH! snap: That's begs the question is there such a thing as a safe browser? (I'm beginning to think not!)

Nope.

The foundation the internet is built on (DNS) isn't secure, so you can't build a completely secure web browser. How do you know when you type www.google.com that it goes to 64.233.169.104. The answer is that you don't.

Microsoft has a bigger install base, so they will get attacked more than companies that have a smaller install base. The big security lie that their competitors have been propagating for years is only believable if you don't realize that hackers primarily attack things for a profit. What happens in a free market society when there is a huge market for a product? More people make it... In this case the scenario is that a lot of people use a product, so bad people try to find ways to exploit that.

The biggest security that non-Microsoft software has comes from their smaller install bases. As their install bases increase the attacks have been increasing. Of all companies, I think Microsoft has been the most intentional about locking down problems in their products to protect the end user. They still fail regularly, but they are the company investing the most in security.

I know someone will attack what I'm saying here, but look what happened when apple put out a mainstream product (iPhone). ID theft... I suspect that as their overpriced, trendy computers become more popular hackers will start attacking the numerous security holes in those as well.

 

[Wenchkin]

I wouldn't disagree with you outright, but given the market for 3rd party security apps to keep Microsoft users safe, I think Microsoft need to do better in turning all that cash into a great product and ensuring those apps aren't necessary. I'm not talking anti Microsoft, it's just from the viewpoint of seeing the quality and fast fixes on open source software, I'm just baffled as to how a company like MS with their time in the market and available cash, can't produce an OS/browser that makes me want to hand over cash anyway.

I also believe that while programs aren't more secure until hackers notice them, the sign of a good company is that they patch at speed and try to stay a step or 10 ahead. You don't need millions or billions of investment to make and maintain good software. But the truth is, had Microsoft blown us away with value for money and great software that was secure, the open source community wouldn't have flourished as it has. I and stacks of other users would have stuck with what was pre-installed The fact that other browsers have clawed and kept some of MS's old market share suggest that they certainly can keep users happy with security and features. Novelty only carries you so far before you have to deliver on promises. Free software or not, users won't stay with Firefox/Opera etc if it opens their system up to a nasty attack. It's free, so you can just move on to the next flavour

Wenchy

 

[Spree]

You can make Firefox even safer by adding NoScript add on

https://addons.mozilla.org/en-US/firefox/addon/722

 

[Radun]

The same is said about Firefox and Mozilla.

It sure as hell isnt said by anybody important.

http://www.bit9.com/news-events/press-release-details.php?id=102

bit9, the leader in application whitelisting.

 

[Old Man of UO]

You can make Firefox even safer by adding NoScript add on

Yes, but I found it bloody annoying to use.

 

[Wenchkin]

http://www.bit9.com/news-events/press-release-details.php?id=102

bit9, the leader in application whitelisting.

They may describe themselves as a leader in whitelisting, just a pity that article does nowt but list Firefox and ask folks to register to see what they're on about. I hope they're not planning to be the leader in informative websites Not to mention the cookies on that page. However good they are, that site is annoying

Wenchy

 

[Radun]

worked fine in firefox rofl

and it's a company, not an information site.

 

[Wenchkin]

Yeah, I kinda guessed they were a company, simply commenting on the useability of their website, or lack of

Wenchy