SitePoint Sponsor

User Tag List

Page 1 of 2 12 LastLast
Results 1 to 25 of 28

Hybrid View

  1. #1
    Follow Me On Twitter: @djg gold trophysilver trophybronze trophy Dan Grossman's Avatar
    Join Date
    Aug 2000
    Location
    Philadephia, PA
    Posts
    20,580
    Mentioned
    1 Post(s)
    Tagged
    0 Thread(s)

    IE bug used in Chinese attacks on Google

    Quote Originally Posted by Ars Technica
    While investigating the recent attacks disclosed by Google earlier this week, Microsoft has concluded that Internet Explorer was used as an attack vector. As a result, the software giant has issued a security advisory for the vulnerability.
    http://arstechnica.com/microsoft/new...le-attacks.ars

    http://www.microsoft.com/technet/sec...ry/979352.mspx

  2. #2
    SitePoint Guru
    Join Date
    Oct 2008
    Location
    Melbourne
    Posts
    754
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    "I'm Commander Shepard, and this is
    my favourite post on the internet."

    We'll miss you, Dan Schulz.

  3. #3
    SitePoint Evangelist stonedeft's Avatar
    Join Date
    Aug 2009
    Posts
    586
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Another item added on my the reasons I hate IE6 list
    Don't Panic

  4. #4
    From space with love silver trophy
    SpacePhoenix's Avatar
    Join Date
    May 2007
    Location
    Poole, UK
    Posts
    5,000
    Mentioned
    101 Post(s)
    Tagged
    0 Thread(s)
    Quote Originally Posted by stonedeft View Post
    Another item added on my the reasons I hate IE6 list
    From what I've read it also affects IE7 and IE8
    Community Team Advisor
    Forum Guidelines: Posting FAQ Signatures FAQ Self Promotion FAQ
    Help the Mods: What's Fluff? Report Fluff/Spam to a Moderator

  5. #5
    Follow Me On Twitter: @djg gold trophysilver trophybronze trophy Dan Grossman's Avatar
    Join Date
    Aug 2000
    Location
    Philadephia, PA
    Posts
    20,580
    Mentioned
    1 Post(s)
    Tagged
    0 Thread(s)
    This is a bug in almost all of 'em, yeah. That's why the German government recommended nobody use Internet Explorer at all until Microsoft patches it.

  6. #6
    SitePoint Guru
    Join Date
    Oct 2008
    Location
    Melbourne
    Posts
    754
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Australian government says no way Jose: Govt issues IE security warning
    "I'm Commander Shepard, and this is
    my favourite post on the internet."

    We'll miss you, Dan Schulz.

  7. #7
    Programming Since 1978 silver trophybronze trophy felgall's Avatar
    Join Date
    Sep 2005
    Location
    Sydney, NSW, Australia
    Posts
    16,789
    Mentioned
    25 Post(s)
    Tagged
    1 Thread(s)
    According to one news report I saw, Microsoft themselves are now recommending that everyone change the security settings for the internet to HIGH if they are using Internet Explorer 6. That effectively disables all scripting capability in the browser if you follow their instructions. Their alternative suggestion for those who don't want to do that is to upgrade to IE8.
    Stephen J Chapman

    javascriptexample.net, Book Reviews, follow me on Twitter
    HTML Help, CSS Help, JavaScript Help, PHP/mySQL Help, blog
    <input name="html5" type="text" required pattern="^$">

  8. #8
    SitePoint Evangelist stonedeft's Avatar
    Join Date
    Aug 2009
    Posts
    586
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Quote Originally Posted by felgall View Post
    According to one news report I saw, Microsoft themselves are now recommending that everyone change the security settings for the internet to HIGH if they are using Internet Explorer 6. That effectively disables all scripting capability in the browser if you follow their instructions. Their alternative suggestion for those who don't want to do that is to upgrade to IE8.
    Why can't they just advice the public not use this crappy browser
    Don't Panic

  9. #9
    Visible Ninja bronze trophy
    JeffWalden's Avatar
    Join Date
    Sep 2002
    Location
    Los Angeles
    Posts
    1,709
    Mentioned
    5 Post(s)
    Tagged
    0 Thread(s)
    Quote Originally Posted by stonedeft View Post
    Why can't they just advice the public not use this crappy browser
    Because this browser is still installed on the majority of corporate workstations.
    TAKE A WALK OUTSIDE YOUR MIND.

  10. #10
    SitePoint Wizard
    Join Date
    Oct 2005
    Posts
    1,832
    Mentioned
    5 Post(s)
    Tagged
    1 Thread(s)
    France warned against using IE, too. That's something I knew 5.5 years ago when I started using Firefox.

  11. #11
    SitePoint Wizard
    Join Date
    Jul 2003
    Location
    Kent
    Posts
    1,921
    Mentioned
    1 Post(s)
    Tagged
    0 Thread(s)
    So first you have to be using the IE browser with the security setting set to lower than recommended.

    And then you have to receive an email directing you to some specific website that has been specially coded by a hacker.

    Then you have to believe the email and go there.

    Then you have to click on something on the site, usually to install some dodgy software.

    And that creates a security risk.



    Me? I just ignore random recommendations to visit websites that come through unsolicited email. Much easier than changing my browser (which just happens to be Firefox anyway, and has been for many years).

    BUT ALSO

    A couple of years ago, the code for Firefox was found to contain a group of weaknesses that had been in it since it was first built and was in every release for several years, and had been in netscape for a few years before that as well. The governments didn't scream dump Firefox, we just waited until the next update came along and took it. Which is exactly what IE users should do.

    Panic reactions from governments are usually not worth listening to.

    I remember many years ago, when first a vet died in a very careless accident, then his lover (not his wife) committed suicide using the same drug that he got injected with, and the UK government immediately banned it's use. It took six months for the vets to convince them that everyone already knew it was dangerous (very, very dangerous) and that the original accident had broken every safety rule recommended by the drug manufacturer, and to get its use allowed again (it was the stuff you see them use to sedate elephants in those wildlife programs).

    Now here we have another government or two panicking and trying to impress voters into thinking that they are looking after them.

    Just remember, if Firefox every becomes THE dominant browser, it will be the one that hackers examine for weaknesses and exploit. Will the governments then scream drop Firefox, use IE instead?

  12. #12
    Keep Moving Forward gold trophysilver trophybronze trophy
    Shaun(OfTheDead)'s Avatar
    Join Date
    Nov 2005
    Location
    Trinidad
    Posts
    3,746
    Mentioned
    45 Post(s)
    Tagged
    0 Thread(s)
    Quote Originally Posted by Dr John
    So first you have to be using the IE browser with the security setting set to lower than recommended.

    And then you have to receive an email directing you to some specific website that has been specially coded by a hacker.

    Then you have to believe the email and go there.

    Then you have to click on something on the site, usually to install some dodgy software.

    And that creates a security risk.



    Me? I just ignore random recommendations to visit websites that come through unsolicited email. Much easier than changing my browser (which just happens to be Firefox anyway, and has been for many years).

    BUT ALSO

    A couple of years ago, the code for Firefox was found to contain a group of weaknesses that had been in it since it was first built and was in every release for several years, and had been in netscape for a few years before that as well. The governments didn't scream dump Firefox, we just waited until the next update came along and took it. Which is exactly what IE users should do.

    Panic reactions from governments are usually not worth listening to.

    I remember many years ago, when first a vet died in a very careless accident, then his lover (not his wife) committed suicide using the same drug that he got injected with, and the UK government immediately banned it's use. It took six months for the vets to convince them that everyone already knew it was dangerous (very, very dangerous) and that the original accident had broken every safety rule recommended by the drug manufacturer, and to get its use allowed again (it was the stuff you see them use to sedate elephants in those wildlife programs).

    Now here we have another government or two panicking and trying to impress voters into thinking that they are looking after them.

    Just remember, if Firefox every becomes THE dominant browser, it will be the one that hackers examine for weaknesses and exploit. Will the governments then scream drop Firefox, use IE instead?
    Trying to fill the unforgiving minute
    with sixty seconds' worth of distance run.

    Update on Sitepoint's Migration to Discourse

  13. #13
    Follow: @AlexDawsonUK silver trophybronze trophy AlexDawson's Avatar
    Join Date
    Feb 2009
    Location
    England, UK
    Posts
    8,111
    Mentioned
    0 Post(s)
    Tagged
    1 Thread(s)
    Dr John, you aren't wrong (hey that rhymes!). Whenever the press or government gets their greedy uneducated paws on something technology related it gets blown out of proportion. Just look at virus reports, every now and again the press will get wind of a computer virus and act like the Y2K bug has come back with a vengeance. Though I am rather pleased (secretly) that everyone is telling everyone else to upgrade or dump Internet Explorer... perhaps this shake up is exactly what government organisations need to get rid of their deprecated elderly copies of IE6. After all, besides corporations it's government institutions who are the worst for having outdated exploit ridden copies of web browsers. Perhaps we should be helping to escalate the fear-mongoring if only to try and wipe out IE6 using it's own current negative publicity. I know it probably isn't a good idea but it might finally do something to shift IE6 out of our way.

  14. #14
    From space with love silver trophy
    SpacePhoenix's Avatar
    Join Date
    May 2007
    Location
    Poole, UK
    Posts
    5,000
    Mentioned
    101 Post(s)
    Tagged
    0 Thread(s)
    I don't think that many companies will switch away from IE6 as a result. Some may have web apps that only work in IE6 and it would cost x to update them or y to replace them, they might decided that it's just cheaper to severely restrict the access of their employees to the Internet.
    Community Team Advisor
    Forum Guidelines: Posting FAQ Signatures FAQ Self Promotion FAQ
    Help the Mods: What's Fluff? Report Fluff/Spam to a Moderator

  15. #15
    Follow: @AlexDawsonUK silver trophybronze trophy AlexDawson's Avatar
    Join Date
    Feb 2009
    Location
    England, UK
    Posts
    8,111
    Mentioned
    0 Post(s)
    Tagged
    1 Thread(s)
    True SpacePhoenix, why is why I aimed this at government level, their among the worst offenders and perhaps this news (along with their advice) will make them consider spending to ensure the security of their data. It's rather disconcerting that sensitive data is being read and written on IE6 based machines.

  16. #16
    SitePoint Zealot Dorsey's Avatar
    Join Date
    Feb 2004
    Location
    NJ
    Posts
    103
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    On any subject about which I know more than the average person, the government and mainstream media always get it wrong. Here we go again.

    The media have a long history of taking a story, distorting or ignoring facts (see Dr. John's comments above), and then drawing conclusions that "sell papers". Politicians simply want to get their names and faces into the media so they feed the frenzy, especially against any large corporation. I'm surprised that some U.S. politician isn't calling for a federal ban on IE6 ostensibly to "save the children", which is always a winner.

    At least when a movie, TV program, or made-for-TV movie dramatizes something to gain an audience, the warning: "based on a true story" is displayed. The screen version ultimately bears little resemblance to the story upon which it's based, especially the conclusion. In this case, the basis of a fantastic story is an avoidable bug in IE6. The rest of the story is a worldwide shutdown of the Internet with people's financial and personal data at risk, children's safety being compromised, satellites going out of orbit, melting of the polar icecaps, and all the rest. Had one courageous programmer simply fought the mighty Microsoft machine and "done the right thing", all of this death and destruction could have been avoided.

  17. #17
    SitePoint Member
    Join Date
    Jan 2010
    Posts
    2
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    I still don't know why most people use IE.

  18. #18
    Visible Ninja bronze trophy
    JeffWalden's Avatar
    Join Date
    Sep 2002
    Location
    Los Angeles
    Posts
    1,709
    Mentioned
    5 Post(s)
    Tagged
    0 Thread(s)
    Quote Originally Posted by bobharpista View Post
    I still don't know why most people use IE.
    Because it's been the default browser for so long - it's all they know.
    TAKE A WALK OUTSIDE YOUR MIND.

  19. #19
    SQL Consultant gold trophysilver trophybronze trophy
    r937's Avatar
    Join Date
    Jul 2002
    Location
    Toronto, Canada
    Posts
    39,220
    Mentioned
    58 Post(s)
    Tagged
    3 Thread(s)
    Quote Originally Posted by bobharpista View Post
    I still don't know why most people use IE.
    i'll tell you why some of us use it -- because we like it

    IE is an awesome browser and firefox is "a piece of junk"
    Attached Images Attached Images
    rudy.ca | @rudydotca
    Buy my SitePoint book: Simply SQL
    "giving out my real stuffs"

  20. #20
    Follow: @AlexDawsonUK silver trophybronze trophy AlexDawson's Avatar
    Join Date
    Feb 2009
    Location
    England, UK
    Posts
    8,111
    Mentioned
    0 Post(s)
    Tagged
    1 Thread(s)
    Quote Originally Posted by r937 View Post
    i'll tell you why some of us use it -- because we like it

    IE is an awesome browser and firefox is "a piece of junk"
    Sarcasm not included, cynicism sold separately?

  21. #21
    SQL Consultant gold trophysilver trophybronze trophy
    r937's Avatar
    Join Date
    Jul 2002
    Location
    Toronto, Canada
    Posts
    39,220
    Mentioned
    58 Post(s)
    Tagged
    3 Thread(s)
    are you referring to the sarcasm or cynicism plugins?

    IE don't use plugins

    IE don't need to use no steenkin plugins
    rudy.ca | @rudydotca
    Buy my SitePoint book: Simply SQL
    "giving out my real stuffs"

  22. #22
    SitePoint Member Brooger's Avatar
    Join Date
    Jan 2010
    Posts
    6
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Exclamation

    Lots of errors in IE

  23. #23
    SitePoint Wizard
    Join Date
    Jul 2003
    Location
    Kent
    Posts
    1,921
    Mentioned
    1 Post(s)
    Tagged
    0 Thread(s)
    Out Of Synch patch now available for this problem
    http://www.pcadvisor.co.uk/news/inde...newsid=3210703

  24. #24
    Trash Boat mkoenig's Avatar
    Join Date
    Aug 2007
    Posts
    1,232
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    You mean some people are still using that thing?

  25. #25
    SitePoint Member robbin.joe's Avatar
    Join Date
    Oct 2009
    Location
    Beijing, China
    Posts
    22
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    IE is so terrible browser!!!
    never use it!


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •