You will recall that last week security experts (man, what a cool job!) released evidence that there were certain vulnerabilities in IE and IIS 5.0 that could allow hackers to redirect browsers and download a keylogging trojan from a Russian website. We posted a story about a released fix, here.

Anyway, you will be interested I am sure to find out this security flaw is actually a feature that allows an ActiveX ADODB.Stream object to read and write files on a hard drive. Attackers used this "feature" to download copies of a keystroke logging trojan onto the unsuspecting browser user's computers.

In addition to the fix, there is also now a workaround in progress, and rest assured Microsoft is currently thinking up more "features" for us as we speak.

Somehow I find scripts that don't have read/write access to local files to be more secure..

What, you mean as in UNIX, basically? Yeah.

thank god IE isnt good, lol it stopped working for me a little while ago.

I've started using Firefox for anything I consider in any way hostile (i.e. just about every web site out there!)

I am using Mozilla, since IE stopped working.

I second that Phantasm66.

Though my IE hasn't stoped working at all. But i did use to get lots of adware, and with firefox, i've not used ad-aware for a long time now.

I wonder what you meant with "features"

...and when Longhorn arrives, I am sure that will be "feature" packed as well!

Yes, i think it will be... just like every other windows OS.

Just think about all of the "features" Microsoft is working on right now...

Ya, i think they will probably have a more advance "feature" where anyone is allowed to access your windows folder.

I can very vividly picture Bill Gates in my head saying "....and its got these really cool features, where blah blah blah...."

I think a much better approach to modern software engineering on products destined for the unwashed masses should be to rank what people hate about computers and exterminate everything on the list. Then redesign based on that. Not add more problems to something that's already got enough problems, thanks.

Its doesn't take much imagination to put things like spam, security holes, viruses and so forth on that list, and design product that from the ground up just aren't susceptable to these things, full stop.

All of this going around adding "features" is basically adding extra bugs onto things that are already bug ridden and messy.

If Firefox shows us anything, is that a sucessful product is simple in design, just does what you want it to do, and does not permit anything annoying. End of story.

Ya, i can see bill saying that. I can also picture the windows where you are working on a word document and it crashes and says Error 263472562738253822936(also known as some cracker is looking at you personal files right now and we think it would help if we ended word.

Then that guy that uses linux and doesnt get any bugs, viri, trojans, adware, or spyware that got your IP address from who knows where(one of the millions of places that your IP is just waiting to be taken), is sitting at his computer laughing at you.

Perfection is reached, not when there is no longer anything to add, but when there is no longer anything to take away.

-- Antoine de Saint-Exupery

Microsoft has good intentions trying to create the capabilities to have programs do more and more. Their problem is that their software sometimes does more than we want it to (without our consent).

Shoddy programming is making things very complex and huge. Just make it do what the software is supposed to do and not make it do anything else.

funny how this never realy effects "joe schmoe user" like it effects people in the know.

Ignorance is bliss after all... I remember when features sounded like a good thing.

The problems ARE affecting you, you just don't know its happening. Its like being infected with a virus on your machine and you don't have anti-virus software so you don't even know its there.

But that doesn't change the fact that it IS there.

true, but I was making the point that joe schmoe only checks his e-mail and looks up flights occasionally... they're not running their offices network security or anything... you know, the guys with a AMD 600 and no reason to upgrade.

Thought I'd throw this out there too, in regards to the Anti-Virus: I recently found that Avast- AntiVirus is a great FREEWARE anti virus. You have to register, but it's free and hassle-free, just fill out like a 3 second form and they e-mail you a reg code that's valid for a year.. then when the year is up, register again for free!! I'm not one for advertising, but it's definitley worth a look. It even scans incoming website trojans, much related to this topic, so I KNOW I was having issues with this IE 'Feature' on one of my comps.

You can get Avast from download.com

Opera owns.

[url]www.opera.com[/url]

Really, it IS true. You can't believe how better my computing seems now I have striped away alot of the unnecessary rubbish like:

1)Dual booting

2)Having small screens with lots of windows open

3)Constantly chasing all of the most "up-to-date" application suites like office, photoshop, macromedia, etc...

...and just concentrated on pure USE.

If you don't use something don't bother installing it and the best software to use is likely to be that which is simple and effective in a great many cases.


...which is exactly why these guys need simple, bug-free software just like Mozilla Firefox that is not prone to complex and annoying problems. These people aren't equiped to deal with these complex security issues and so forth so they need to know its being delt with. A lot of the problems that "joe nobody" experiences with computing IS result of security problems and viruses, they just don't realise it. They blame themselves. They think its just "them being stupid" and don't realise that they have a virus infection or anything like that because they have no anti-virus software and don't know how to get it or that they need it.