Slashdot Mirror

← Back to Stories (view on slashdot.org)

Mozilla: The Good And The Bad

Posted by timothy on from the 10-dollar-fine-if-you-said-ugly dept.

Rui del-Negro writes "According to this article at The Register, six security flaws in Mozilla were posted to BugTraq last weekend. They have not been added to the official Mozilla vulnerability list yet. But details can be found here, here, here and here (phew!). Finally, two other bugs were found, relating to loading GIF files (in several Linux browsers) and Mozilla's (JavaScript) implementation of onUnload ( ). Are they trying to prove they can beat Microsoft at their own game..? Or is someone just trying to win a prize?" On a brighter note, Zerbey writes "From Neil's Place here is 101 Things Mozilla can do which IE cannot. Very interesting reading and an excellent resource for convincing stubborn Internet Explorer users why they should switch. This article was also reported at Mozillazine. I'm still waiting for NTLM auth to be implemented so we can switch over at my workplace, the only reason we still have to use Internet Explorer."

8 of 541 comments (clear)

  1. Read the entire article.... by dartboard · · Score: 5, Informative

    If you read ALL the way to the end of the article you'll note that 5 of the 6 bugs are already fixed in 1.0.1 which has been out for a couple months now. I believe the sixth is already fixed in the 1.2 nightlies.

  2. NTLM auth by bunratty · · Score: 5, Informative
    I'm still waiting for NTLM auth to be implemented so we can switch over at my workplace, the only reason we still have to use Internet Explorer.
    NTLM auth is bug 23679, and is scheduled for Mozilla 1.3 alpha which will be out in about one month.
    --
    What a fool believes, he sees, no wise man has the power to reason away.
  3. These are already fixed by nxg125 · · Score: 5, Informative
    To quote Mozillazine
    The most remarkable detail about these bugs is that most of them are already fixed. In fact, only one of the flaws (reported here in September) is present in the latest stable branch and trunk releases (Mozilla 1.0.1 and 1.1 respectively), while the more recent 1.2 Beta isn't vulnerable to any of them.
  4. Re:A Word on Mozilla by Entropy_ah · · Score: 5, Informative

    the Windows version is hurting
    That's strange because I've found that Mozilla is more stable and faster in Windows vs. its Linux couterpart.

    --
    my other penis is a vagina
  5. Re:Most are already fixed by MAXOMENOS · · Score: 5, Informative
    In fact, as of 1.0.1, five of the six bugs are fixed. Only one of these bugs exists in 1.0.1, and it's generally regarded as the least serious. Almost every distribution is running Mozilla 1.0.1 or 1.1 by now. I know I'm running 1.1 on my box, and Ximian GNOME is using 1.0.1.

    Seriously, this isn't as big a deal as it looks, folks.

    --
    Finding God in a Dog
  6. 31 security vulnerabilities in IE by Futurepower(R) · · Score: 5, Informative


    Here's a link. On November 6, 2002, there were 31 security vulnerabilities in Microsoft Internet Explorer

    The link is taken from: Windows XP Shows the Direction Microsoft is Going.. If Spanish is your native language: Windows XP muestra la dirección que Microsoft está tomando.

  7. Re:How about https? by Dr+Caleb · · Score: 5, Informative
    Anyone have this problem?

    With some sites, yes. If they don't support the Mozilla certificates, they won't allow https. I use Mozilla for my Banking (switched banks because they supported Mozilla) and things like Hushmail. For some things at work, I still have to use IE for sites that don't support Mozilla's certs.

    --
    "History doesn't repeat itself, but it does rhyme." Mark Twain
  8. Re:The 101 list is bullshit by Edgewize · · Score: 5, Informative

    While the 101 list goes a bit overboard, you're wrong to dismiss a lot of the items.

    1. Tabbed browsing is inherantly slower with IE because it creates a new browser instance for each tab.

    5. The side bar is NOT just a history window. You can put virtually anything in it, including slashdot headlines or a google box.

    7-8. MSIE does NOT adjust font sizes if the CSS specifies it in pixels. Mozilla does.

    17. At least with 5.5, the "cookie manager" is nothing more than a listview of all your temporary internet files. Mozilla has a real interface with more capabilities.

    22. The average user will not set this, and will inevitably install Bonzi Buddy or some other crap because they click OK too fast. Mozilla comes secure by default.

    46. You can run Mozilla from a network share without ever launching an installer. I'd like to see you do try with MSIE 6.

    77. Yeah, assuming that you have the appropriate locale of Windows. And that you'd never want to run a version that was different from your operating system's locale settings.

    97. True. But you must admit that Mozilla's security process is more open than IEs, and that there won't be major vulnerabilities that go unpatched for months. With IE you have no such guarantee.

    101. You just can't argue with that one. The lizard is cool.