Slashdot Mirror

← Back to Stories (view on slashdot.org)

State of Colorado Calls Firefox Insecure, IE6 Safe

Posted by timothy on from the sheeps'-bladders-may-be-used-to-prevent-earthquakes dept.

linuxkrn writes "The State of Colorado's Office of Technology (OIT) has set up a work skills website. The problem is that the site says 'DO NOT use FIREFOX or other Browsers besides IE. It has been decided that Mozilla based, non-IE browsers pose a security risk.' (Original emphasis from site.) If the leading IT agency for the State is making these uneducated claims, should the people worry about their other decisions?"

13 of 530 comments (clear)

  1. Re:If I were from colorado.. by djh101010 · · Score: 5, Insightful

    A more sensible approach might involve writing a well spoken, coherent, concise email. No reason to come across as a raving nutter - if someone is considering the "angry rant" approach, I'd suggest that perhaps what they are doing, is the opposite of help.

  2. Another reason by citricshooter · · Score: 3, Insightful

    From their FAQ: "Can I use Firefox or another Browser? No! For security reasons, and some significant processing issues as well, the only supported Browser is Internet Explorer Release 6 or later." I suspect the processing issues are the real reasons and they are trying to scare people into not using Firefox so they don't get the phone calls about their site not working.

  3. Re:Attention all personnel by Anonymous Coward · · Score: 3, Insightful

    He at least knew enough to be dangerous and change the default of hiding stack trace information when an unhandled exception occurs.

  4. Re:firefox and mac by PIBM · · Score: 3, Insightful

    The correct comparison would be this.

    Gun #1: Kills each and every gunman when they don't expect it. You are not even pressing the trigger. But you sure as hell do know they kill the gunman.

    Gun #2: You know that a gunman can be killed once in a while, but when it happens somebody will deliver you with upgraded guns preventing it from happening again in a small amount of time.

    TY, I'll keep FF

  5. Re:firefox and mac by h4rr4r · · Score: 4, Insightful

    Ok, so explain why apache is less exploited than IIS. It is used far more.

    Your little idea is cute and has been proposed by many before, and just like then it is wrong.

    Also you should investigate your keyboard it seems to be broken.

  6. Re:That's just bad by jamie · · Score: 4, Insightful

    I should check the IIS version. I have a sneaky suspicion that it's not up to date. Or maybe take a cue from Bobby Tables and throw some SQL injection attacks at the site.

    No, you really should not do that.

    Sheesh...

  7. Re:Who's on first? by Tubal-Cain · · Score: 3, Insightful

    Use Safari, Chrome, or Opera!

  8. Re:Attention all personnel by rachit · · Score: 5, Insightful

    Interesting... stack trace displays are turned off by default from remote sites when using ASP.NET for security reasons. They had to explicitly turn them on to display this.

    I doubt they are the best people to tell others about security...

  9. Re:The site looks like... by Adriax · · Score: 4, Insightful

    Very poor odds. Working for a similar state government agency I can tell you the process probably involved atleast 10 weekly or monthly meetings to outline the basic content, a 2 month review process on the outline documentation for the page layout, a 6 month bidding process from prospective contractors to create the webpage, another couple months for a cost/benefit analysis, with the final decision that a frontpage license and either a new permanent position or an expansion of duties amendment (with associated raise) to one of their high up IT people would be the answer. Total time to create that webpage, probably a year and a half to two years.

    --
    I don't suffer from insanity, I enjoy every minute of it!
  10. Re:If I were from colorado.. by Anonymous Coward · · Score: 5, Insightful

    Based on the speed at which things can get fixed by what are normally lumbering juggernauts when they are seen and reacted to by a million people on the Internet, I'd suggest that ten thousand angry rants are often much more effective than hundreds of extremely well spoken, coherent, concise emails.

    In this case, a massive spew of vitriolic bile targetting squarely at the fools behind that miserably borked IIS site seems warranted, and is likely to be more effective than some pansy-assed coherent "Dear Sirs, I am writing to engage in a discussion concerning what appear to be some personal biases toward the fine products that Microsoft Corporation produces and their manifestation in a minor slight against Firefox, another fine product, on your web blah blah blah..."

    Fuck that. Hoist the pitchforks! Ignite the torches! Geek wrath power ON!

  11. Re:If I were from colorado.. by a_nonamiss · · Score: 4, Insightful

    Why are you linking that stuff here? You think anyone from and IT department that lauds the security of IE6 actually reads Slashdot? ;)

    --
    -Arthur
    Cave ne ante ullas catapultas ambules
  12. Re:The site looks like... by quacking+duck · · Score: 3, Insightful

    Lest people think only government wastes monumental time and effort towards something relatively trivial, Microsoft spent a full year working on a feature one of its developers claims could've been done in a week.

    It's a paradox of project management--too many stakeholders or dependencies, and you're going to bog down in red tape. Too few means that no one cares what your project is and won't waste their time helping you, and it'll never see the light of day. Finding a balance is difficult at best in any large organization.

  13. Yeah right. by jotaeleemeese · · Score: 4, Insightful

    People like these bozos can insult our intelligence and we all are supposed to act politely and rationally.

    I say that a few hundreds or thousands rabid replies from aggravated individuals would do wonders.

    Sometimes politeness is seriously overrated...

    --
    IANAL but write like a drunk one.