Slashdot Mirror

← Back to Stories (view on slashdot.org)

There Is No Safe Web Browser

Posted by Zonk on from the internet-is-a-scary-place dept.

Michael writes "David Sheets has up an interesting article on browser security, and I have to agree with his conclusion: no web browser is safe. The article details the recent Netscape fiasco, and touches on the whole Firefox/Internet Explorer debate. From the article: 'So if it sounds as if we're all at the mercy of hackers just looking for some new challenge, that's partially true. As law enforcement officers will tell you, crime finds you if it wants you bad enough, no matter what preventative measures you take. But the vast majority of criminals have an Achilles' heel: They prefer convenience to challenge. For now, it's more convenient for them to pick on Internet Explorer.'"

19 of 444 comments (clear)

  1. Lynx is safe by Bodysurf · · Score: 4, Funny

    As is telnetting to port 80 and interpreting the HTML in your head.

    1. Re:Lynx is safe by Anonymous Coward · · Score: 2, Funny

      This "Lynx" you speak of intruiges me. Before I switch from current browser, could you post some screenshots of Lynx in action?

    2. Re:Lynx is safe by Anonymous Coward · · Score: 2, Funny

      Actually I love telneting to porn sites and then imagining the pictures in my head:
      girl-on-girl.jpg - oh yeah!

    3. Re:Lynx is safe by Profane+MuthaFucka · · Score: 5, Funny

      I don't even see the code. All I see is blonde, brunette, and redhead.

      --
      Fascism trolls keeping me up every night. When I starts a preachin', he HITS ME WITH HIS REICH!
    4. Re:Lynx is safe by advocate_one · · Score: 2, Funny

      It would appear that I just got modded redundant for pointing out the illogicality of the original redundant mod!!! wtf...

      --
      Donald 'Duck' Dunn: We had a band powerful enough to turn goat piss into gasoline.
  2. No browser is safe? by Rosco+P.+Coltrane · · Score: 3, Funny

    I'd say this one is fairly safe...

    --
    "A door is what a dog is perpetually on the wrong side of" - Ogden Nash
    1. Re:No browser is safe? by digidave · · Score: 1, Funny

      My brain is an HTML layout engine, you insensitive clod.

      --
      The global economy is a great thing until you feel it locally.
    2. Re:No browser is safe? by MrAnnoyanceToYou · · Score: 3, Funny

      I dunno about you guys, but I like to just stick one finger in an electrical socket and bite down on my 10bT.

      Anyone willing to browse like a real man is completely secure from hackers.

      --
      My little site.
  3. Perhaps it needed to be said by IntricateEnigma · · Score: 3, Funny

    Perhaps it needed to be said, but it seems to me like this post is a statement of the obvious.

    I'm sure I'll be modded down for just posting my blunt thoughts in responst to the post.

  4. Always protect yourself... by logik3x · · Score: 4, Funny

    Don't forget to wear a condom for safe browsing...

  5. what? by jorgen · · Score: 2, Funny
    There Is No Safe Web Browser

    Only a sith lord deals in absolutes. I will do what I must.

  6. Re:Yes there is by Spodlink05 · · Score: 2, Funny

    A "manual" web browser is safe. That is, you print out and manually inspect all the data being transmitted, including all the HTTP headers and the what not. That way, if you see anything fishy, just burn the print out :)

    Yeah, it's really hard to animate the flash stuff and streaming media though. Brings a whole new meaning to dropping frames.

  7. Re:Yes there is by robolemon · · Score: 2, Funny

    Actually, it's more secure if you travel to the server where the information is stored, remove the hard drive, and perform forensics on it to determine what the data you are seeking is.

    --

    I design user interfaces for a free network management application,

  8. Re:Nor is there a "safe" OS.... by RatBastard · · Score: 4, Funny

    There is not "absolutely, 100% safe from everyone" not safe and then there is "dropped the soap in the prison shower" not safe. While even Linux and Mac OS X fall into the first, Windows falls into the second. Windows is unsafe due to the lack of planning or safety concerns of the programmers. Programmers told by the marketting department to spend their time on features above all other things.

    I can't speak for Linux users as I am not one, but I can speak for some Mac users. We don't ignore the bugs, hacks and patches out there. I keep my system fully patched at all times, just as I dio my Windows boxes. The difference here is that my Mac has never had a spyware infestation, nor a virus, nor any of the other intrusive attacks that my Windows machine has suffered through. And I'm careful with my Windows machine.

    Windows has gotten safer as MS has finally deigned to pay attention to safety concerns. But a fresh Windows install is as unsafe as a child molester in a maximum security prison. A significant number of patches and extra utilities need to be installed, many of them only practically available from the Internet, before it is reasonably safe to connect that computer to the Internet. This is not true for Linux and OS X bioxes.

    --
    Boobies never hurt anyone. - Sherry Glaser.
  9. Re:Doesn't go far enough. by wfberg · · Score: 3, Funny

    No program that accepts input is safe. /dev/null is holding up fine.

    --
    SCO employee? Check out the bounty
  10. Maybe DJB should make a web browser by Anonymous Coward · · Score: 1, Funny
    Maybe D. J. Bernstein should make a web browser. I can see the DJB web browser now:
    • The web browser will only have minimal HTTP pre-1.0 support. When asked about this, DJB will claim that HTTP is an inheritly broken and insecure protocol.
    • The web browser will not support Javascript. Long rants about the horrible security design of Javascript will be on his web page.
    • The web browser will require three new directories in the root directory to run, and require five other DJB packages to install.
    • The web browser will not download files. DJB will tell people to use wget to download files.
    • The web browser will be 200k big, not have a single comment in the source code, and will only render <p> and <a> flags.
    • There will be a large base of users talking about how DJBweb is much more secure than other browsers, and will have large repositories of patches to make the browser usable.
    • The web browser, of course, will not be open source
  11. Re:And in other breaking news.... by LocoMan · · Score: 2, Funny

    Microsoft agree upon some standards... it just happens that those standards disagree with other people's standards... :)

  12. Be careful!!! by 3770 · · Score: 5, Funny


    I telnetted to port 80 once, and interpreted the HTML in my head.

    Unfortunately there was a infinitely recursive Java script function on there.

    I'm still not quite myself.

    --
    The Internet is full. Go Away!!!
  13. Re:No safe browser? by Ziviyr · · Score: 2, Funny

    What about lynx?

    I wondered that immediately, we're prolly in redundant territory, but I'd like a response on this.

    Any l33t lynx crackers got some sploits on it saved for a rainy day?
    ("they all trust lynx, I'll pwn them all, hahahaha!")

    --

    Someone set us up the bomb, so shine we are!