"Jeanette" <jrusso2@hotmail.com> wrote in message
news:%23AzPR340HHA.1208@TK2MSFTNGP03.phx.gbl...
> Jeanette wrote:
>
> Almost every windows update has an IE security fix in it. Firefox instead
> of doing security patches releases a new version. They are finding and
> patching holes quickly instead of waiting a month to release them.
>
> If you desire real security in Firefox you can use the no script plugin
> which allows you to view sites without using java script, which is what is
> usually the source of exploits.
>
> No Script plugin allows you to determine trusted sites to whitelist so
> they can run scripts.
>
> Saucy wrote:
>> [Firefox update fixes bug brace]
>>
>> "...Mozilla has pushed out a new version of Firefox that fixes a brace of
>> security bugs, barely a fortnight after its last update..."
>>
>> http://www.theregister.co.uk/2007/07/31/firefox_update/
>>
>> Like I've said over and over .. FireFox is raw .. untried .. and more
>> holes than swiss cheese. Internet Explorer is the system that has gone
>> through the fires of security hell to emerge on the other side as IE7.
>>
>> Saucy
>>
Hi Jeanette:
You are wise there because you hit one of the nails on the head. Scripting,
whether IE or FF [or any other] is a major source of exploit.
Here, I browse with it off. If the site seems 'legit' and I want to see it
better etc. etc. I add it to my Trusted Zone [which is raised to
medium-high+ rather than the default medium] and refresh. I also use a
hosts file which dead-sinks [to localhost] many of the advertisement domains
such as double-click [which also contain scripts].
I personally got one virus since 1996 and that is because I ignored a
warning to patch while running IIS on Windows 2000 - my bad. Otherwise,
AFAICT, I've not been exploited even once. But I attribute that muchly to
turning off scripting for general browsing and only allowing it for
seemingly legitmate websites.
Nevertheless, IMHO, FF is, well, unproven. Its exploits are more basic and I
would venture there are many yet to be uncovered. IE, on the otherhand, is
much more tried, the discovered exploits are more esoteric [and difficult]
and it probably doesn't have too many more majors ones yet to find.
Saucy