I'm wondering whether there are any security features of Firefox that IE doesn't have that make it fundamentally more secure. The only thing I keep hearing is that Firefox is more secure because attackers spend more effort exploiting IE than Firefox, but that's not an inherent benefit to Firefox (if everyone switched, then the attackers would just attack Firefox).
Is firefox inherently more sercure than IE, or is it just used less?microsoft net
There are thousands of small ActiveX controls/programs. When you use Internet Explorer to download and view a Web site, ActiveX controls from that Web site are downloaded also. These ActiveX controls have access to your computer—FULL ACCESS TO WINDOWS. If a malicious ActiveX program is downloaded into your computer, it could do anything to your computer.
Other programs, such as Java, are similar to ActiveX controls. But Java programs by design have little access to Windows. This limited access restricts the damage that can be caused by malicious Java programs in Windows.
Over the years people have targeted ActiveX controls in order to attack your computer. Since Internet Explorer was built to take advantage of ActiveX controls, IE became the easiest way to carry out these attacks. ActiveX controls are now viewed as a serious security threat that requires you to take steps to protect your computer from these threats.
Microsoft reduced the danger posed by ActiveX controls in Service Pack 2 (SP2).
Even with SP2, it’s still up to you to close the security hole. That is why Internet Explorer has security settings for ActiveX.
To find ActiveX settings: In Internet Explorer, click Tools and then click Internet Options. Select the Security tab. Be sure the Internet zone is selected. Click the Custom Level button. In the window, scroll down to 'ActiveX controls and plug-ins.' There are five settings here. Your ActiveX controls should be set to:
1.'Download signed ActiveX controls'—set to 'Prompt.' Signed ActiveX controls from a known organization and are considered safe. But you still want to be asked/prompted about this since there may be some sites (using signed ActiveX controls) that you may not want download into your computer. This prompt will give you that option.
2.'Download unsigned ActiveX controls'—set to 'Disable.' This will prevent the downloading of unsigned controls.
3.'Initialize and script ActiveX controls not marked as safe'—set to 'Disable.'
4.'Run ActiveX controls and plug-ins'—set to 'Enable.' This will prevent you from being repeatedly prompted once you have accepted them.
5.'Script ActiveX controls marked safe for scripting'—set to 'Enable.' Ditto—once I have accepted them, do not prompt me about them
You will get a message once in a while asking if you want to download a program. It is probably an ActiveX control. If you know what it is and need it, click Yes. If it is from a company that you trust, you can check the box to “Always allow downloads” (to not ask you repeatedly). Otherwise, the answer should be no.
Because of the safety reputation of Internet Explorer, Firefox (www.mozilla.org), a free alternative Web browser, has captured a growing share of the browser market—because Firefox does not accept ActiveX controls.
You still need ActiveX controls; for instance, Windows Update requires ActiveX. You can not use Firefox to update Windows; you will have to switch to Internet Explorer. Some Web sites require ActiveX controls, too. Use Firefox for safety reasons but DO NOT delete Internet Explorer since you need ActiveX controls to download Windows Updates.
BUT you can install a plug-in, IEView, that allows you to switch to Internet Explorer when necessary (for updates or for certain Web sites).
To find IEView in Firefox, click Tools and then click Extensions. Click Get More Extensions. To use IEView, right-click the page you want to open in Internet Explorer and select View This Page in IE.
Firefox does have security concerns, but it is not part of Windows and is, therefore, safer than Internet Explorer. Since Internet Explorer is an integral part of Windows, consider only using Internet Explorer on Web sites where you have an expectation of safety.
Is firefox inherently more sercure than IE, or is it just used less?microsoft flight simulator internet explorer
Its not so much security as it is the fact that IE has been out so long and is the most popular browser. It makes it ideal for people who write malware because they can infect more systems! In time, Firefox will have the same trouble!
they claim they are more secure but inm fact they are not as reliable as IE...and when you try to delete firefox is when all the troubles begin
I don't need to worry about security because I have a Mac. The one big difference I notice between IE and Firefox is that the latter blocks pop-ups. That's a huge plus!
used less, so no real thrill to hackers to try and figure out exploits, as it will affect almost no one.
It is true that IE is used more, therefore exploited more.
However, the biggest difference is that Firefox does not support Active-X content (with a few exceptions, such as for Windows Media Player). While Active-X allows web sites to do some amazing things, it is also widely exploited for malicious purposes. There are a few other, more minor security differences, but this is the main one.
The same lack of support for (and lack of exploitation by) Active-X is also true of Opera, Mozilla, Seamonkey, and Netscape (except Netscape 8).
You make a very good point man. IE 7+ for Windows Vista and IE7 for Xp and Server 2003 are more secure than IE6 was, but there are still security flaws being found and fixed. IE 7 and 7+ also have anti-phishing and are intigrated with Windows Defender, and I have seen both of these features come into swift action when I navigate to a dangerous page,. where as Firefox would not alert my of a site attempting identity theft through phishing, nor would it alert me of malware being installed to my PC.
But the same is for Firefox (the discovery and patching of security flaws). I have caught several viruses on Firefox as well as IE. Like you say, if we all switch, more hackers will focus on Firefox instead and that would only drive people to yet another browser. One browser I do recomend is the Opera 9 Browser. I use it on my Windows Server 2003 Standard based PC and I have yet to be attacked while using it, and it allows you to have differnt setting for each website. Like for MySpace, I have it set up to block all cookies and pop-ups.
Over all, I use IE the most, simply because it's the widest supported browser in the world. Using Firefox and Opera, I have come across pages that 'Do not support this browser.' Looks like for now atleast, some of us have no choice but to use IE.
Oh, and a note to the guy who answered saying he uses a Mac and does not have to worry about security; ALL of the browsers I mentioned block pop-ups and all can be configured to block ALL pop-up's. And Mac's would be exploited as much as Windows based PC's if they were used more too (just like Firefox would be!), so don't get too smug. lol.
No comments:
Post a Comment