Linux & Open Source - eWeek


Battery 500 Project Charged Up over All-Electric Cars
Charting the Final Frontier--Google Maps for Indoors
Get Smarter Technology on Your Mobile!
  Linux & Open Source


Use Firefox for a Safer System



 By: Steven Vaughan-Nichols
2004-12-22
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Linux & Open Source story.


Rate This Article:
Poor Best
Opinion: Internet Explorer is insecure junk, and it's time for Windows users to move to Firefox if they want to protect their systems.

The itsy, bitsy spider, climbed up the water spout.
Down came the rain and washed the spider out.
Out came the sun and dried up all the rain,
So the itsy, bitsy spider went up the spout again.

That was one of my daughter Alicias favorite nursery rhymes when she was small. And its a great fun as that, but it makes for a lousy IT policy. How many times must Windows desktop users be hosed before they start using a more secure desktop operating system?

Or, if youre not ready to shift over to a good, solid desktop Linux such as Novell Linux Desktop or Xandros or buy a Mac, the least you could do is start using more secure, open-source applications on your Windows.

Take Firefox for example. Ive been using Web browsers almost since before there were Web browsers, and Firefox is simply the best browser Ive ever used on any platform. In addition, Firefox is a lot more secure than Internet Explorer.

Notice I didnt say it was perfectly secure. Like any software program, it has problems. Internet Explorer, on the other hand, is a security hole disguised as a Web browser.

Resource Library:

Dont believe me? In past few weeks, weve seen a pair of IE problems that hit fully patched Windows XP SP2 (Service Pack 2), a spoofing problem that also smacks completely patched systems, and the Bofra/IFrame bug, which SP2 does stop. And the IE faults keep coming and coming.

Do you want to spend all of your IT staffs time patching IE and praying that your users dont run into a page that opens up your network like a rotten fruit while waiting for a patch? I dont think so.

Oh, and did I mention that if your shop is still running Windows 2000, you can forget about getting XP SP2-style security patches anyway? I hope your budget is ready to either upgrade all of your systems to XP or add a lot more security to your systems, because Microsoft isnt giving you a whole lot of choice about the matter.

A Microsoft program manager, Peter Torr, recently asked on his blog, "How can I trust Firefox?" My question, of course, is how can I trust IE?

Yes, Firefox has holes, too. For example, theres a pop-up window problem that gets pretty much every browser on the planet.

People who dont get security often say that if Firefox or any other open-source software were only as popular as IE, their security would be just as bad. Nope. Wrong.

First, open-source software is constantly being looked at by numerous developers. When problems are found, and they are all the time, theyre quickly fixed. With Microsoft code, you have to trust that its programmers are on the ball and that theyll fix problems quickly. You look at their track record and you decide if thats true. I know what I think.

Second, on Windows, open-source applications are just that: applications. Microsoft programs, by their very nature, are tied directly into the operating system kernel. This means, IE—and other Microsoft Windows applications such as Outlook—enables any security hole to potentially rip open the entire operating system.

This isnt paranoia. Read eWEEK.coms security section. Youll find story after story about serious Internet Explorer holes that appear, and Microsoft sometimes takes months to patch them. Who needs this?

Torr said he thinks Firefox and its plug-ins and helper applications need better code signing so that users know that an application really is a legit one and not a hacked Trojan that will lie in wait to attack your system. Hes got a point.

But at least with Firefox, the real application isnt a problem. I know who makes Internet Explorer, and IE is the problem.

eWEEK.com Senior Editor Steven J. Vaughan-Nichols has been using and writing about operating systems since the late 80s and thinks he may just have learned something about them along the way.

Check out eWEEK.coms for the latest open-source news, reviews and analysis.



  Reader Comments: Use Firefox for a Safer System
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Linux & Open Source Articles          >>> More By Steven Vaughan-Nichols
 


x}r8vDZӮvI-5mYKU-EB!)/1ؗgLtВ*ll@"/$Iș3&ל۔N]sSã7w$5vv~]2I=*_rdz&9%G jL7R}f]S kkLNშ :#:@.Pk< Z53껲5ԗoˏne0.ZIQ6*֠Oմn۴$1O݁h] >YQږy@6GH;*C7ܩx8ս/DeO؀IQIM"h4"j>wn3gdYǝg3 (ƻf {iZvkP;Uyah -\r.",ѽk@M*6 D=iTV,v2*-&[1ҡk)u55\`r*jHZ6tG,#H>`7sIzV@h ɠæ&q!)$fҀ 8#/֌<{m n0up;\RrLE}tuOuvN6xvy/;YHL~'@DR˅4ID>&-āWP= ;H5=(G~WB-b)ځVP\FZ<," J1zĢJ :OyuyqHutzxn |')ĠV*PFbЊ%+gxc_-:N.9ݫ9^֧Qٝ{N4ps Zʿ~'^=z6l M u ô|WVK5IͽGb{|"޺xx>"9I G|?&8w!}Ow| nrLK$o# ef"`Q%  '|#8Jn.b? [ʚ&gᇰfeٜ%YWaNMo\z'fe..~z8^%glh|X.B2iK1PWG5MGRŦcWJPX=(‹JMU~ _q-~~b2B cgLt `: 0hvz>RӚOCqOCGs>2胎6ml8-Ʃ" ,70}HOQI$Qp{4ڭm= K!PI}xXS9&z(t@ h&r=kIׇ.[??  G`rn]ɍ5y0f+wEPb(=զπCρY\7 >)@}>g )nвc@] #RRP$S'hI#r B!,`@n%`{ [AX;k ab .u@Gҙ;vjtW*kR1eb -x[b~ILg2+IɴaX9yDMf#T`B[ụDKak`DݜrA+żMCFӀqQTZUj@5YQeMTܷP9<:79HQob##YHLq;2@&{l6g{A3uNP"'Կ ;7u9\϶T=\҇9 UQR }-rfMAR?Ty  Bdj/h~W.Y 3EXVHdF!zC{ޡ[Y3T)w^IY䞅T_9YX XM`v7 ,Rd0q6NI SXh8E/C4jM24D֒fbumIJ{ۥi]hk%T7Bj^¢ym<2֡`9HM^>VL"fˣQ4dJ Ւd6]\{8`OEMĽ~[*+n#7~4EhZ\-}s4  9P8wSJ$l%K w=hZz F<#W=`zu_#0 l1)̕>A XXèԪP -"|@( K ؈Uraә; ҢwZ^Sv?XQ6O.[-z+U>cCLmRGM}Bu߲!&]1=ZSYɰ\R >16D ȸau-`byfc]Wѹq}O8l1D:3`npb Z*"~~~049 =J>f}<~B.+p&L>FkwYвJzu6$T]Pr(nSDZ06AaeL䱯^x@MY 1H$6/`k :@0 !PTQ-W0.#Ƃ_L_LU1(TO"nʻhC{5X]>(Di?aE"%1ڣs!a*/7+ \|;gjZ(T+1:ѡUT9(Jus??]ex$? rF@~?@Mf1zpY ׃~Bgw%eXY8f-10kY /ÊTU5 i ~>EV6őG@-q?@*:2 X\[ 0(E{h⢉!H[+4kpý225\ZS*ٝ'(R~-p;>=5h0 9l" ?ŤX LkQsGŅ5 {é#fuMaFž JV-=oyE0q-"fdaD4@w-bC-YM~'ӭH5ysV9y^%fR+a1yXUztqlFIhgf'ܪ+_L}ˀGeyMg`%͓q58=_PpbGi }cϺB7x^oxPYm/i_0LFdT~!\xRflҡ.n22˓O~VF70p-'~| XVێI)hYb29K9}~rnf@D䛧h> Wkr4hZM4Giwrģ: ߀&\qcca#2"n{=n ~/I6A뇭N:"c^.2|Y{ޘ#i }SUՔRe ɢ)6VCiB/ex.uMXob2aϘJw<_8Pcܾu8,+!Up]t3Mb> h ztS6eULJZZ$|p`\ N z@W{qT2LEM+t׀m+J9wWGc&3 ;G ɢ\' WeRUn8H3Az' vBq[6E),8{Je%[ ir2=QZaǰ^P(k|hhqNL v.>Bﴪ 1AsE6 7k{$ ?/l8F:w~ݕDw;?\}y_:ivg su_t{~{ODмpڏR nϥ%<jEjOJV%~~n.;lᳳI?`yAr+~p:s%Y; gu ߽o=r@pAj?'d0| stj^7bL`jX&IEqD#Sk!x0M kj? iZg Í7"tSOKԫ}2L:&r֚S%[@ {B~J;D~2q?Is6vYX[O`AS2%ə$G=)!*ښI$"8J542 eI? Md4㓘PV Pɂ.#'59۴<]|غm|d<aJh 鳁VKu^c'`|xR=Na0O3)Wi^tӨjVtwXGڎ'9#7<;NbG/syBO+f8 ,]:]7__z˜GoQM21Bߓ1Pݘ~h='Fs) o.(cǩm:;@D'w H-Ѝ>u?y{`o&o=)sdzI'伅)ћN}ۨ+=lKhϟڕv{qO n4]9gUsb;I2ӱ$BUUk ۻʾ\EVeΜtޓNt*<>rgx7Yex3D?,yi91>gn\S;-z4ݷPc{~}q.e~W(TR .bO뻬$J骇v9#]MT--^\RK>^+U뀞< h6vo"Y!0N ئ73ӧ{cef7X#Ÿց!{ Rf'曜;`!3ȑ"+Ӡ5m&s{$;gr0 c*yh\]w71&P)<A~F<v4)˷x:z}in3d⫆܆~@F' zYXW+2?_c#ޚU^?2%;5oNƂ1f̙ʈ1/WI26  \i{\na'x{7d\ڊ]aKn~ &v/wN-Viug.R|Lm[)+%&.;ax)ߟG1uό\SX a.;|Ngs;OСjB,=.a׌{O[zqi)Ψ#a*sC|AT!:QRjI ]~0hg'{O&1!m0J3؟q\,(oA[i3sJ%t u; oSznaD]GN|<,8WP cYD$L(lTIJ|L({P6NPN8u0_BddAWAgT L{ J}w:jB{exs:S^>vc"P?=zg[QŬP?Z'IE#T_p/&ѫM)5XOH,Ilvi%= 08ȁ_ZU`60rڥMN2~rgq>}jl&d"NoӀhdQ0O nS/X0y 9*9VJV}RKNyE"jd!y%LK Ϭ;jf'b  jB/aNUb*E@[Ňm5B+*u0mzR\ڵњbYE#X7LI/&5o{Jj, T+4UBF??tNo0M=L*&z8=1p_$lpR"@S2EkU񄗗]xaJ6yH1FQL&S~ VoR۔&RߚJKosN|]%[XܑL`pTTU3H"qJ>ۄ%BT2|\;aEԫڗ^4d5V7%srxMk*G\&w,sc"a* ?Lŝ*Eef2do#U )DcxKڦ4Y|.L8czCmwΌP]R>ȅXyz *U+aBJh! {6t,Gش#)YMԱO|(eY' ς##mRQr%kᱼt^`{. -_xIV~IZ;w-]:)$N=ܽڎ'Vʅ%0FB` nI!<^-='!:DAc/If֔&':>s.5QRTjdjF3uw! $S"i"ѓx2 RWV0Ilʤnf?{}wnҩ~C%0Bq &v/t}`l"` WB/X> E!=-["r UpQ|[հx7 ]"fD<_ԠcmlTmI/sOAwSfF\Z/5}5,>&ґk.c2$18;kǽ9ڷ >Y <=?ǿ!=/rw*H`B.@9{XܣVwp>;RTS.J/3`xڠٙ= +gύ5BI1ot>>>>> qP-^x~UK)Uެa9{ѳaW%͉S`/7.η4/6~pTzyoaa#"4w2'۟{/ulg:iH7G3aְ_ix0.;9d<?P`!E{^Oo14@tMbs"9v j}A&fyiP_PxܟP tQP`HԝêRfabA$  ޣW3OE\-钺cE#5 cJLT]?ܴo)WlXk;m & (`"]mn4{y'@ 0޿y}dتZg](L "ii#ҙ;v̀Xoؕt@+h51Cx/~3weܘ7m4sgm{^Pjm—\'5si"M ~_-|>BٚB-`"5$;6S5㵙@=m{{7iS`W۰:ư:/2o=}Wֿe#{tХoJYBVC|_~Ycg'6 d&pj֢_fX/l%"Q0M8e[YƓSAD ,M)%g=wM@{ Nq-E ~_,63:oq0|Wiۋɀ{:=0n9ve,S&Lm ~0w$-!̈ОOuLK/6o*8l]-G?=eO)VWo\kE_A-۴hgϡ?:nKr|4Ґtr'udE4 upD{a@amIC4= ?^%-Yϟfl!ۿT}dk1V^sVu2QQ Q?DE ~ J?Ztȕ'7 2~(^Dx8j {S{[$$pvԏ;"(ʊvמS|lڏR*ju<68 D:[gGRCB(,hF] Ѱh L68~܉~#a,{G )ﴪ 5 SU@8AnIݲYvH;"C:co7aT0|LN}x+{VzK"?{|h:hTHu o@b<$7{S4m!ԓFGE)׀!gT"Ba=X@*>IoH$]U# `xTF>#筫Yo]*4~Q^[H{:}GT002~r ÃF3>a:$.+JAW) +:e1qKu/ tS)sSx-r)GkFuyO)ꉨngÐs{cŰDNѤ c 4Q? ~1&'qE< ,iMPm!a\ 0H 1шb1a9=g1yEl%@Eȧn1rO T-B@a=Q#Gl< |`,_(18yUtQ:..( o$H([PXP؟?pk2%TJTmn$>9/,a4`\Xg- .E.kq NpWYN4@ S+dfɻ3:rtT(ʞ2|{C@us9,2usx\jJmŇ$!Ѕ8i,)@"!9͉kk#a]?X/#~|aP8\  +z+U'I]U@)p!xW`ǪZJWvxO=noXKfz+i+ 9Iˑ;}^oh`u0 }a3B's=1h^\}&'K$'}<]/99luoė[u{{}޺lY2j%lzZ6ZNA/|veQŚDxΧ65^ZZ+!zWU8jz67am!>EZG}=oIJ/6π2_3ʿ@K(\_~JmfwQ__~ 88neAI~>@?dG(kחsqF9?ϴ3ʡ5~eY|vNt`w~' >ී৓1g'>;@ D='(Q~ ewQ{1?sw1]7]? ͐/@q_d sA?=/c=/c}~X_c}}OY0O+(*ʠ+h*+ K:ICP.Np3Ka /ޯ?e$@yJ͠2,c/2\.2sܿw2~62A/u CFWT=k ϼdmMu^k8VҮap_l _xi +{O2 r hxVydb byeo?+( wOʻϝ)i҇su5nU}ӉzZ>Ś/JYy8* tgx'Og6{D4k{HO8=2\zI[F$Q!=W]6pqSn$ 5OnsOkr>uxvY^]YX;Yo[췡\<#mgev'σfţu.TVl<-t&j\eif(+@J~t pw?t~fc&Hy6h~h|Z/O~Uq4 5%p"!H8? H-LyóHNz78߄ưs3@Yt5^i{A3f- ts`ƎIn6J墦 V˕R;qG+D$ôA{(7I_s.LE+zq՞{:8,U`Y\s`XC-&lybmbӿ+ H|XU$ǖlKFUwh0o?53]^NJH~2W9 n]51s(3+cmn`ƨ*&&[cc 'G4WB) spn#LSچqr3f[W1^{3E3$ưzx{ȸ>A}F$5௚B8z^Dl, يC I\!.b.Tlsmqm ‹Ȥ3Y,> V_$v{5B+O 8H2G$!|c"5("vy9= |ɳdv/+ 0bŽ%O#i*iŗKw? J,݈ AQ6 yJ>? T@|5 %\6$DR}B0~Nmv09DEPމ!/[vcS)fGVFp)hNcx GU65Tc*i|? e Mt8Cs ܐ}DICOFq:h /A.Sl2q%X4@FC0!6i}.#sE%X,8/# kuf_[ƝMQh| W9,Bux ] D pC'+_2uE>v/-J^Q.u 7tleb @O\3 N\m m73Tta %` GYU` r8ǩk Vmx }t+y!.1w: ˟zTqٶ7(G,cݴ-`jk7EmYtAY}#s!?Ljlf^^kti( aaɗvX cJ\gGۂ~э ׶{S<"Y4/G장"@f"[]2*m;׹W6x/yc|>[z7D5b7LP9ɓ_ a0*>c-sq-Cn' SW5fYѻ& Ax&=`#hxb <nRhQ`;X+N%t&vж?TH0H6^?tf ŷ$@˽m]Vg"a7<_h(E8yba&"eW}q$Y":0X+.9 wҝX;yB(O}i}!L*`'NÓgVXvQJ=hy6xL v{kfuU+kD;idM^l+:cSEᘸe=)jalw9n~;1{6J܆mJPUN9VKI+^iTNˎc>tgLt ))vsml-6C-;|.