Why You Can't Pry IE6 Out of Their Cold, Dead Hands

Esther Schindler writes "It's easy for techies to enumerate the reasons that Internet Explorer 6 should die. Although the percentage of users who use IE6 has dropped to about 12%, many web developers are forced to make sure their websites work with the ancient browser (which presents additional problems, such as keeping their companies from upgrading to newer versions of Windows). But rather than indulge in an emotional rant, in 'Why You Can't Pry IE6 Out Of Their Cold Dead Hands,' I set about to find out why the companies that remain standardized on IE6 haven't upgraded (never mind to what). In short: user and business-owner ignorance and/or disinterest in new technology; being stuck with a critical business app that relies on IE6; finding a budget to update internal IE6 apps that will work the same as they used to; and keeping users away from newer Web 2.0 sites."

chrome frame

install chrome frame and problem is solved until such businesses get their head out of their collective asses.

Re:chrome frame

[CharlyFoxtrot]

I just use Firefox Portable with IETab for the internal POS (not talking about point of sale folks) applications that won't work in anything but internet exploder. Oh and Hidetab comes in handy from time to time too.

This is news?

[symbolset]

It's not a secret that lock-in was why IIS and IE were designed to complement each other. The objective was to kill Netscape and Java by any means necessary. Active-X was a tool to this end.

And now we see the same tools who bought these chains exchanging them for IE8 and Sharepoint when they can. Because that won't be hard to get rid of.

Re:This is news?

[Chris+Lawrence]

What I want to know is, will the managers or admins who chose solutions that locked them into an obsolete browser will be fired? Subordinating your business interests to the business interests of your vendor seems like a pretty stupid move, and one that should have consequences.

Re:This is news?

[TheRaven64]

Java appeared a year before ActiveX. It's not exactly a direct competitor though, because Java is a cross-platform distribution mechanism, while ActiveX is a way of packaging Windows applications for Internet distribution. To say it had no legitimate competitors is somewhat misleading, because it doesn't really have a legitimate use either. It's not a web technology, it's a Windows technology. It allows Internet Explorer to be used as a platform for easily deploying Windows binaries to workstations. There are a lot of other tools for doing that, including some quite successful ones from Novell that were widely deployed before ActiveX was introduced.

Re:This is news?

[rcw-home]

Back when it was introduced, ActiveX had no legitimate competitors.

Yes it did; the native Win32 app. IMHO most of the ActiveX-reliant applications of that day would have been better off written that way anyway. It would have been more portable because it never would have tied them to any particular browser version, and it would have been more usable, too.

Re:This is news?

[Tuidjy]

My guess in general ? No. In the company I work in? Hell, no.

1. The manager is the owner. My disagreement from 2001, the reasons for it, and the suggested alternative are in his inbox.
2. It's been serving us faithfully for nearly nine years. No one gets fired for having engineered something like that.
3. It's trivial to run an emulator with the sole purpose to access our point of sale front end to ANOTHER obsolete app.
4. Rewriting the four sites that will not work with newer versions is not impossible, or that costly. Just unnecessary.
5. In the world of private ownership, department heads don't fire get fired for mistakes in the past, but for failure to handle the present.
7. No one got fired for buying IBM^H^H^H Microsoft.

Re:This is news?

[Angostura]

No - because the current server/client combination works just fine thank you - as far as they are concerned. That's one of the points made in the article.

Re:This is news?

[Grand+Facade]

No one ever gets fired for buying IBM....

Re:This is news?

[Chris+Lawrence]

Yes, it's just fine, unless you want to move to a different server OS, or a different client OS, or a even a newer version of the *same* client OS. In other words, you've completely removed the ability for IT to make any strategic or tactical decisions. All of these problems could have been avoided with a cross-platform solution, either open source or proprietary. These alternatives did exist, and some companies used them and avoided such lock-in.

Re:This is news?

[hitmark]

probably not a web facing server, and maybe work stations set up to border on dumb terminals.

Re:This is news?

[vtcodger]

***What I want to know is, will the managers or admins who chose solutions that locked them into an obsolete browser will be fired?***

I would imagine that in many cases, their question would be why YOU are still employed. They have computers. The computers do what is needed. They perceive that the IT industry -- much like American car manufacturers in the 1970s -- is creating expensive and poorly crafted junk that is little, if any, better than what they have. Change for the sake of change.

And they might be right. Refusal to engage in a Red Queen's Race (http://en.wikipedia.org/wiki/Red_Queen's_race) is not necessarily a sign of cluelessness. You might want to meditate during leisure moments about who here is actually clueless.

Re:This is news?

[shirai]

I think you'll like this song. It's about the problems MSIE developers have because of the lock in:

IE is being mean to me song

Full Disclosure: One of my employees, Scott, wrote this song (and I recorded it). The inspiration came from one of our dev teams that was constantly complaining about the problems the browser gave them.

Re:This is news?

[Gonoff]

IT departments did not generally want Windows either. That would mean replacing their nice mainframes etc with uncontrolled PCs. The idea of allowing any end user physical access to even these "toy computers" was actually popular with senior management because it put power into their hands and took it away from people they didn't understand or like.

Those managers have gone on and some will have moved much further up. I have met some who still see that move to Windows as a liberation. They see any move from certain things as a move back to the Bad Old Days!

Do not blame the IT from then. It wasn't their idea. Some were for it - some weren't. The managers were seen by MS as the way in as IT departments were not cooperative. It was just a seriously good business strategy by MS to promote themselves to the people at the top, rather than to those who actually recognised them for what they were!

But they did put a computer on every desk. It is now up to us to get those computers working right...

Re:This is news?

[Bigjeff5]

unless you want to move to a different server OS, or a different client OS, or a even a newer version of the *same* client OS.

They do not want to move to a different server OS, or client OS, or a newer version of the same client OS. That's the whole point.

You should really try working for a business that needs to actually, you know, turn a profit instead of upgrading to every shiny new system as they come out.

What an IT manager wants and what is practical is often not the same thing, and a good IT manager will develop the trust needed to steer the company toward the products and upgrades they truly need. Unfortunately, a lot of companies don't bother to hire good IT managers, often outsourcing it to people who could care less, and you get stuck in situations where a company spent $10 million on a web app that only works in IE6 a year before IE7 was released. You can bet your ass that company is going to want to get more than a few years out of their $10 million investment. Ergo, no upgrade.

Re:This is news?

[Chris+Lawrence]

If they really don't want to change often, and use things for a very long time, then choosing proprietary software is probably the worst choice. What do you do when support is dropped and you have a critical bug or security hole? In that case, open source is a much better option, since you can run it forever, and if you absolutely need to fix something you can.

Re:This is news?

[Sir_Lewk]

And I was using a 244MHZ PII box well into 2007. My computer of course was not typical of computers those days, and makers of modern software did not take my machine into consideration. Saying that ActiveX was a more viable technology then native applications in 1996 because your personal computer happened to be quite old doesn't really make much sense to me.

Re:This is news?

[Jurily]

Yes, like people installing IE6.

Re:This is news?

[msoftsucks]

I guess you really haven't done any development using IIS. You should look at the browsercap.ini file in IIS. As delivered by Microsoft, it treated Firefox as a very inferior browser compared to IE. You had to perform some serious hacking to this file in order to bring up the capablities to something reasonable. And even then IIS didn't treat Firefox the same. Let's face it, using IIS basically forced IE on the client. Plain and simple.

Re:This is news?

[aztracker1]

Java was an incredibly poor performing option on the computers in the 1998-2001 timeframe though. ActiveX allowed for windows natively executing code within the browser. Though a poor solution for the most part, especially compared to native apps, since ax needed to be registered/installed anyhow. Java wasn't performant enough, and Flash wasn't yet a viable option. On release IE6 was the best browser available. That's changed, and not been the case for several years now, but I think people look back a decade ago with some skewed perspectives.

Re:This is news?

[Mongoose+Disciple]

What I want to know is, will the managers or admins who chose solutions that locked them into an obsolete browser will be fired? Subordinating your business interests to the business interests of your vendor seems like a pretty stupid move, and one that should have consequences.

Clearly you're not a web developer or haven't been one for around ten years. There was a several year period (between when Netscape turned to utter shit and the rise of Firefox) where IE was the only reasonable choice for a graphical free (as in beer) web browser.

It doesn't take an idiot to make an app that only works in one browser when there only is one browser.

Re:This is news?

[symbolset]

On release IE6 was the best browser available.

Except that it was a trap from day one. Every serious IT pro knew it was a trap. There was no attempt made to disguise this trap: Microsoft made it quite clear that they were competing for control of the Web and they considered it an issue of corporate survival - which it was and is. They were and are completely open about the fact that they're integrating these things and interfering with open integration for the direct purpose of promoting their technologies and brands. Like I said in that first post, it's not a secret at all.

That makes it hard to weep for those who invested and still invest their own money, time and intellectual ability to skill up on these technologies and so chain themselves to the oars of Microsoft's galley, doomed to row for the benefit of a corporation that prides itself on fooling others into rowing their boat to their own detriment.

Misleading but Common

Although the percentage of users who use IE6 has dropped to about 12%, many web developers are forced to make sure their websites work with the ancient browser

No, they are not. They might want to, but they're not FORCED to do this. This means they are part of the problem, because if IE6 didn't work with most sites it would provide another reason to make the free upgrade.

Nah.. still all comes down to "idiocy"

[oneandoneis2]

Sorry, but having RTFA, I still can come back to just one reason for still using IE6: Ignorance.

Okay, so there's companies that have IE6-only apps. That's no reason to not upgrade: Nobody forces you to have only one browser. Even if you don't want to have IE6 and Firefox, you can have two versions of IE itself installed. You can set up the hideously-insecure IE6 to only be able to access the company intranet where you need it, and use IE7 or 8 for the rest of the world where having a more-modern, more-secure browser is useful.

Multiple versions of IE can be done courtesy of here or here

Old hardware can run Firefox just fine - I used Portable Firefox for years when I was working for an IE-only company. You don't have to use the browser your company installs on your machine if you don't want to.

And as for IE6 keeping people away from sites like YouTube.. I'm not even going to dignify that with a refutation. Anyone who wants to get around that problem could do so without the slightest difficulty in the space of about ten minutes. This sounds more like a fairy story from the IT depertments to clueless PHB's: "Don't worry, boss, we don't need to block YouTube, it doesn't work with our browser. Not get out of my cubicle so I can watch the latest Foamy the Squirrel video, wouldya?"

Re:Nah.. still all comes down to "idiocy"

[John+Hasler]

> Nobody forces you to have only one browser.

Many users are too stupid to deal with two.

> Anyone who wants to get around that problem could do so without the
> slightest difficulty in the space of about ten minutes.

Most users are too stupid to deal with that. The rest are smarter than the admins and are going to do whatever they want.

Re:Nah.. still all comes down to "idiocy"

[SanityInAnarchy]

Many users are too stupid to deal with two.

Easily remedied -- again, configure IE6 to not be able to access the Internet, and provide a splash screen every time they try explaining how to get there. Also, place a link on their desktop to their internal app -- if you're good, configure it so the IE it opens doesn't have an address bar.

Anyone who wants to get around that problem could do so without the slightest difficulty in the space of about ten minutes.

Most users are too stupid to deal with that.

I doubt it. All it takes is one user who figures it out and publishes a blog post. Then a few other users -- again, it only takes a small number, say one per department -- find said blog post. Before you know it, everyone's doing it.

Put another way, you'd think users are too stupid to pirate things on their own, but all it takes is one person to figure out how to burn a Photoshop CD and defeat the DRM. After that, even if it's a slight inconvenience, they'll do it, because it saves them hundreds of dollars.

Either way, blocking YouTube by blocking IE6 is about the least effective, most headache-prone way to block these things. Don't they have corporate firewalls they could use for this? And any user smart enough to use a proxy is also smart enough to use a portable Firefox.

Re:Nah.. still all comes down to "idiocy"

[Ash+Vince]

For stupid corporate users, it's easy. You label the IE6 shortcut Intranet and you label the FireFox (or Opera or Safari, or whatever) shortcut Web. You configure IE to use a proxy that only goes to the Intranet and you configure the other browser to connect outside. You tell Windows to use the browser you want for the web as the default handler for http URLs.

You mean label IE7 or IE8? Very few companies are going to deploy anything other than IE on a windows platform. They just want users to use something that is familiar to them. Oh, but it is not supported by MS to have multiple versions of IE installed on the same PC so that rules this out.

Re:Nah.. still all comes down to "idiocy"

[MagicM]

Multiple versions of IE can be done courtesy of here or here

AFAIK, the only safe and MS-supported way to run multiple versions of IE is to use MS Virtual PC. They even provide free images to run IE6-8 on XP and IE7-8 on Vista.

Chained to IE6

[Sique]

My corporate laptop is chained to IE6 because lots of the systems I administer have Java and JavaScript based configuration interfaces which only works with IE6. It fails on alternate browsers and even IE8 has issues (not to mention the fact that you have to have Java 1.4, Java 1.5 and Java 1.6 installed in parallel and switch to the right one for each machine).

Re:Chained to IE6

[SanityInAnarchy]

You could install multiple versions of IE. You could install any other browser and use that instead of IE6 where you can. You could run IE6 in a VM.

You're only "chained" because you don't care.

Re:Chained to IE6

[houstonbofh]

The purpose of IT is not to have the latest shiny. The purpose of IT is to support the business. If the business needs a software application that only works in IE6, than you support it. Or you tell your boss that he has to upgrade, and spend a few days playing xbox while you look for a job.

Re:Chained to IE6

[zonky]

Lets talk again when group policies are present in Firefox/Chrome?

Like it or not, for big IT, these are must haves:
Ability to specify proxy servers and prevent users from modifying them?
Ability to restrict settings, etc etc etc
Ability for Firefox to use the internal windows cert store

The problem is not that IE6 sucks, it is that there are barriers preventing Firefox/Chrome from having a place on the corporate desktop. Why they don't address these I'll never understand.

Re:Chained to IE6

[jimicus]

Like it or not, for big IT, these are must haves:

Let me just say, I agree that third-party browsers need to support group policies before big businesses will take them seriously but if the business depends upon...

Ability to specify proxy servers and prevent users from modifying them?

to guarantee people only get on the web using the Approved Method, they're Doing It Wrong.

Re:Chained to IE6

[St.Creed]

If the business wants to do business using illegal means, the corporate lawyers are going to stop it. Firing them is dangerous in the extreme and can lead to largish prison sentences.
If the business wants to rent officespace in a condemned building, it's a given that someone will knock some sense in the head of management.
If the business wants to sell dangerous or illegal goods, someone from the quality check department should put on the brakes.
If the business wants to use a dangerous and in the long run, very expensive, tool to conduct business, the relevant department should stop it.
If the business wants to use a dangerous and in the long run, very expensive, IT-tool to conduct business, the IT-department should stop it.

A business where the line managers run roughshod over the relevant departments in order to get their bonus in the short term is a business that's not going for the long haul. Make sure you are prepared to abandon ship when the managers do likewise, and make sure that questionable decisions are confirmed in writing or e-mail, and copy them to a folder at your home.

Re:Chained to IE6

[thetoadwarrior]

True but technology moves fast. The idea is to use technology that allows you to keep up and move on when required. Microsoft fucked things up by locking people in and yes it probably will be costly for some people to move on but it will cost a lot more down the line to move on.

Had people opted for open formats and open standards then it wouldn't be as much of an issue. I have no pity for companies that have their data locked behind some outdated awful MS solution. I hope it hurts their pocket book big time when they're forced to move on.

Re:Chained to IE6

[thetoadwarrior]

http://www.frontmotion.com/Firefox/

There you go, if for some reason a new version of IE is out of the question then there is a MSI version of Firefox that allows you to deploy across numerous computers and use group policies.

Re:Chained to IE6

[VGPowerlord]

not to mention the fact that you have to have Java 1.4, Java 1.5 and Java 1.6 installed in parallel and switch to the right one for each machine

Why? Do you have some Java program that would run in 1.4 that won't run in 1.6? I certainly have never run into any.

Re:Chained to IE6

[aztracker1]

Agreed, if workstations aren't allowed to access the internet directly, but only through a single proxy with authentication, it doesn't matter if a user can change the setting, it won't work if not configured correctly.

Old Standards Never Die

[lobiusmoop]

Reminds me of this old story of how the design of the Space Shuttle was influenced by the width of a horses butt

Re:Old Standards Never Die

That is an urban legend.

Re:Old Standards Never Die

[asavage]

That is the worst debunking I have ever read on snopes. It even says 'perhaps more fairly labeled as "True, but for trivial and unremarkable reasons."'

IE6 still exists because Microsoft wanted it too

[Cassini2]

Microsoft designed IE6 with all sorts of cool interfaces for corporate developers. They then unleashed a wave of evangelists to encourage people to exploit those non-standard extensions, and encourage them to exploit the non-standard quirks. It was a deliberate strategy to gain and hold market share.

It worked. IE6 is unstoppable, even by Microsoft.

Speaking as

[Dunbal]

I'm the husband of a senior exec in a Fortune 500 company which will remain nameless (but you use their products every day anywhere in the world - it's a big one) I have noticed that they still use Windows XP and IE 6. Although my better half isn't in the IT department I have made this observation to her and the apparent reason is that IT is "waiting" to upgrade to Windows 7 (ie, they skipped Vista entirely) and they plan on doing "all the upgrades at the same time". The internet browser is not the key feature for their staff anyway (what really gets used is office and outlook 2007 plus a custom "IM" program). In fact, large chunks of the internet are blacklisted by the IT department. You just can't get there from the company VPN which is the only way to connect on the "company laptop" (good thing they don't know about "Ubuntu" so my wife and I can skype each other when she travels).

My understand is that it's not "ignorance" that is holding back the switch - rather the economic problems set back upgrades of company hardware that were planned for last year and have been pushed forwards to 2011 and the tech boys decided that if they're going to upgrade they'll do everything at once, including the browser.

Re:Speaking as

[Sir_Lewk]

Ia Fortune 500 company which will remain nameless (but you use their products every day anywhere in the world - it's a big one)

"Which car company do you work for?" "A major one"

Let me guess... next you want me to hit you as hard as I can?

Re:Why You Can't Pry IE6 Out of Their Cold Dead Ha

[jisatsusha]

You clearly haven't seen the sort of people who run these companies.

So why can't they..

[T+Murphy]

Why can't they use IE8 with IE6 compatibility? That way companies have no reason to be using IE6 for applications where a modern browser would work, and nothing should break. I realize this is too obvious to be a new suggestion, and I know IE8 has a compatibility mode (not sure what version it works with), so either Microsoft has dropped the ball or the higher-ups are more immune to logic and reason than I thought.

Re:So why can't they..

[houstonbofh]

Because it is not fully compatible, and with some old applications it just does not work. (Mostly custom apps)

Re:So why can't they..

[zonky]

IE8 has a mode for IE7 compatibility, not IE6, as i understand it.

Re:You Can't Pry IE6 from the Poor, M$ Addicts

[Dunbal]

Afterwards the pieces of M$ should be given to the free software movements so interoperability can be acheived.

      I know you're trolling, but that's the problem. You want everyone to switch to linux, and then you expect interoperability to be developed. It's not going to happen. The interoperability must come first, and then and ONLY then will linux even be considered for anything more than running the servers.\

      Linux is like the DVORAK keyboard - apparently it was/is faster and apparently the layout was more "well thought out" than QWERTY. However you can't expect the whole world to suddenly switch unless there is a clear decisive advantage to investing hours of training and downtime to transition to the new standard. Dvorak is only "marginally" better than QWERTY - and even that small margin in speed is disputed, so it ends up being just not worth the up front cost of switching and retraining.

      The same for linux. Yes it has come far. Yes ubuntu can be run by just about anyone. Yes there are similar apps available in linux. However by design, by omission and due to copyright/patent laws, they are different enough to require substantial investments in switching. Also very few of them have ALL the features available in current Windows software. And big business is showing you that even at X hundred dollars/product cycle, Microsoft products (and products designed only for Windows) are still "cheaper". It's not enough to "clone" current Windows software in linux. Something has to be made that is CLEARLY BETTER. Until then linux will remain the toy OS for nerds, or the stable OS quietly running things in the background invisible to Joe Average.

Why expect companies to "upgrade"?

[Animats]

Why should businesses keep "upgrading"? Really, Microsoft's OS hasn't changed much in the last decade. Almost everything runs under Windows 2000. Even ".NET" and Direct-X applications tend to work, and all the major open-source applications do. Why pay Microsoft more money? Most of this "upgrading" is planned obsolescence, not progress.

It was different in the 1990s. In the 1990s, Microsoft went from Windows 3.0/DOS, which was awful, to Windows 2000, which was a good OS. Desktop computing made great strides in the 1990s. But by 2000, the problems were solved. In Windows 2000, networking worked, 3D graphics worked, and the system was stable after the first service packs. For most businesses, that was good enough.

In the last decade, Microsoft went through Windows 2000, XP (which was really to pull the Win 95/98/ME crowd onto a decent platform), Vista (enough said), and now Windows 7 (the new, improved Vista.) At the end of this, we have an OS which offers essentially the same API as ten years ago. Not much has really changed.

Most commercial and open source applications work on Windows 2000, and almost all work on Windows XP. Load up the latest Firefox, and all the "Web 2.0" stuff works on Windows 2000. If you don't get too cute with tricky HTML and Javascript, the same code works on IE6 and later browsers.

Worse, Microsoft's newer OSs are oinkers. They need more CPU and more RAM to do the same thing. They phone home to Redmond constantly. They have activation problems. They're constantly getting updates, some of which make things worse. Why should companies pay for this? Where's the return on investment?

Must be compatible with IE6

[Geoff-with-a-G]

No, they are not. They might want to, but they're not FORCED to do this.

Yes, they are. If you work for a company with more than 10,000 employees (as I do), and if the company's standard browser (deployed and supported by Desktop services) is IE6 (as it is with us), and they pay you to develop a new internal web application (to go along with the 20 others that are already in use and designed for IE6 only) - well... you make it work with IE6 or you find a new job.

Re:When should FOSS projects stop supporting IE6?

[TheRaven64]

Why are F/OSS projects supporting IE at all? Presumably because some proportion of their userbase wants to and is willing to contribute time or money to make this support happen. When should F/OSS projects stop supporting IE6? When no one is willing to contribute the time or money required to support IE6.

IE6

[suzieque]

Is it me or has Firefox got clunky lately? I used to use IE6 for my sins and converted over to FF but that is now heavy... Thought about Chrome but don't like giving the big G too much data or power than it already has..

Re:Oh, come on!

[artg]

Seems there's still a good number of web designers who are prepared to tell 28% (firefox share) of their potential customers to screw off.

And what would OS X accomplish?

[SanityInAnarchy]

migrate out of a Windows platform by one method or another JUST TO STAY marginally more safe in the Internet Security arena.

From what I've seen out of Apple and Microsoft lately, I don't see conclusive evidence that OS X is any more secure than Windows. At best, you'd get a short reprieve until the malware writers figure out there's a ton more Macs now, and start attacking them.

And in the meantime, you're dealing with a company which has way more lock-in and higher costs than Microsoft.

Why wouldn't they move to something actually better, like Linux? Or Solaris, or FreeBSD, or...

Moving to MacOS X give the opportunity to do work in MacOSX whenever possible and only revert to Windows as needed. What a gift.

Sure, if you happen to like OS X. I know plenty of people who actually prefer Windows.

Been using both Windows and Mac together for over a decade, since Win 3.11 (if I remember). It just is not that much different to get used to one OS or another or BOTH.

You're not in a position to really say much about that, then. I've been using Windows, Mac, and Linux on and off for years now. It's easy for me to get used to multiple OSes.

But most users are used to learning things by rote, and learning all the fiddly little details of what they use. I've seen users completely disoriented because their emails weren't colored correctly, because we upgraded them from one version of Outlook to another, or switched them to Thunderbird. I've seen my English professor have trouble launching a PowerPoint in OpenOffice, because she couldn't find the SlideShow button where she expected it -- she didn't think to look under the "SlideShow" menu, at the first item, called "SlideShow".

Companies look at these, and basically have to weigh the costs of firing a bunch of otherwise-useful employees who simply refuse to improve their computer skills to what we'd expect, or paying to retrain them on a new system, or continuing to throw money at the old system.

Frankly, I think they should just bite the bullet and upgrade, and pay attention to how technologically-adept new hires are in any field. I don't care if your job isn't to program the computer -- your job is to use the computer, so you should be good at that.

IE6 compatability is *not* a valid excuse

[asdf7890]

The company I work for creates web based software used by large (by UK standards) banks and I can tell you that the vast majority of their userbase is stuck on IE6. The usual reason for this is compatability with old apps, and IE6 is not as backwards as they get - one of the mortgage processing/calculating apps used when I was sorting the paperwork for my flat was DOS based.

But compatability is *not* a valid excuse for not installing something newer. It *is* a reason for not installing IE8 (you can't run IE8 and IE6 on the same machine without virtualisation of some completely unsupported hack), but it doesn't stop them putting on Firefox/Chrome/Opera/... alongside IE6 and just letting IE6 live for as long as the older apps live (which may be some time given my witnessing of a DOS based app in business-as-usual use two-ana-half years ago).

They will not upgrade from "IE6 and only IE6" until the cost of doing so (design/testing/roll-out of new desktop builds, extra support time needed because if they go for the two browser stop-gap it will confuse many of their should-sacked-from-jobs-that-are-well-documented-to-require-computer-competence-for-not-being-able-understanding-such-things staff, paying for old software to be fixed/upgraded, and so on) is outweighed by the cost of staying where they are (those costs basically amounting to not being able to use certain software/sites (but they are big enough that saying "we'll consider your app if you support IE6" neatly sorts that) and looking like neanderthals (but the general public will never know and is doesn't really matter to them what us techies-in-the-know think)).

They have IE6 apps, you see it everywhere

[gig]

Many custom corporate apps built between 2002-2006 were called "Web apps" but were really "IE6 apps". In the late 90's they would have been Windows apps built with Visual Basic. Companies thought they were modernizing to the Web but really just got a different kind of Windows app.

It continues with IE7 and IE8 ... these browsers are so incapable that, for example, a rich text editor for them is done as ActiveX instead of as HTML5, so you can't run the app anywhere but IE. Now that these companies are often running multiple platforms (Windows XP, Windows Vista/7, Mac OS, iPhone, Blackberry) they are getting bitten on the ass. It's like Y2K in that the future was never supposed to happen.

Microsoft succeeded in forking the Web. This is the aftermath. That's why HTML5 compatibility is so important, the focus on browser vendors in the spec means that Apple WebKit and Mozilla Gecko engineers do a lot of work to make their browsers compatible with each other. You have WebKit redoing canvas in the standard way, redoing Gears in the standard way. If you're locked into any one browser or one hardware that is not the Web, it is by definition only what's completely universal. If it's not universal (IE, Flash) it's not part of the Web.

Re:"Well, it still works....why should I upgrade?"

[tepples]

They'll figure it out as sites start rendering incorrectly

No, they'll use a competitor's site that does support IE 6. My employer tried adding a pop-up to warn customers using IE 6 about the deficiencies of IE 6, but that resulted in a bunch of angry e-mails landing in my box, and it was gone the next day.

Re:Primavera Expedition

[mini+me]

One of the things Microsoft did a great job on was the configurability of IE6. You can morph it to do almost anything you want.

Given that you have that power in your hands, configure IE6 to be a container application to run your one app, but prevent its use as a general browser. Give the users another browser to access the general internet.

Or at very least install Chrome Frame which will give your users a modern WebKit-based browser for websites that request it, while retaining the familiar IE interface.

Business needs

[mikefocke]

The way many companies roll out new upgrades is to replace the hardware and software and apps all at once. Say you are a 1k people company with offices scattered in 20 locations. What does a roll out of a totally tested and cookie cutter tested solution to all upgrades cost every 5 years versus the same upgrades performed every 6 months. In disruption, training, lost productivity, support costs, testing time, shipping, etc. And the pace of hardware improvements have slowed enough and the work has become network hosted enough that you don't have to chase every generation of hardware any more...except for a select few where speed translates into profits.

It is a business decision and all you have to do is look at hardware sales to see it is happening at a slower pace.

IT departments aren't there to chase the latest flavor of the day or the techies fondest desires...they are there to support the business of making money. And rollouts cost big bucks so they get budget line scrutiny at the highest level of the corporation. Now if the recent penetrations cause CEOs to ask how well their IP is protected..there could be some acceleration. But when CEOs are worried about this weeks layoffs..it is hard to get their attention on a revision of software that is working..but which might cost 5 more jobs.

You can do 2 out of 3 of the above

- Ability to specify proxy servers and prevent users from modifying them?

Do this at the perimeter, not on the client.

- Ability to restrict settings, etc etc etc

You can centralize Firefox about:config, you can also push it as an MSI. FrontMotion has a policy kit for FF as well. The policy settings aren't as extensive as IE but then there aren't as many holes that need to be accounted for either.

- Ability for Firefox to use the internal windows cert store

This one I have no answer for other than some logon scripting. Also, IE Tab though that is a suboptimal solution because you now need to support two environments.

Sadly, using FireFox at work can mean being fired

[Ka+D'Argo]

I work tech support for a phone company who shall remain unnamed. The primary "software" we use is all web apps that are run on their local intranet.

And the worst part being, all these web apps were written for IE6. Some will function in Firefox/Chrome/Opera/etc but the primary ones we use the most every day, don't.

AND, they will never update it. Why? The hired a third party programmer to write the primary web app we use, and it was basically contract work. He wrote it, gave X amount of troubleshooting help with it, and that was it. If we need major fixes to it or additions to it, we can't. And if this software goes down, which it does on a weekly basis, we end up having to schedule a ton of call backs with customers we're speaking with on the phone since we can't help them without this piece of software generally.

Now, we all have personal directories on a virtual server we can use for storage of work related files (guides for routers, phone manuals, etc) and most people do in fact install Portable FireFox here and use it for their casual browsing of the internet between calls. Even our supervisors and managers do this as well as us peons. BUT, it is technically against company policy to install outside software of any kind and use it.. even if it is by far more secure and easier to use than what they offer. No one has gotten fired for it but my point being that there was grounds for it, compared to using the shitacular IE6. And trust me, you should see the spyware scan logs of the massive network of user pc's we have.. It just amazes me a company is so cheap it won't pay to have its software updated to accomodate security. It'd hate to be in the actual IT department at this place, their entire day must be spyware/virus removal.

Windows 98

[evilviper]

Don't underestimate the impact of Windows 95/98. It still runs on old hardware, is compatible-enough it can still run most applications businesses need, etc. IE6 is the newest browser available.

If anyone has any suggestion for a full-featured browser that still runs on Windows 98, I could probably reduce the count of IE6 users by a few thousand. Don't bother mentioning Firefox. Mozilla.org gave-up Windows 9x compatibility with v3, so you're still left with an unsupported browser. That "EX"-something-or-other (to run XP apps on 9x) sounds clever, but is an overwhelming no-go in a business.

And suggesting hardware upgrades for everyone, when their needs are absolutely trivial, and already met, will similarly get met with extreme resistance in the "more frugal" (read: cheap as hell) organizations, such as mine.

Re:I Use IE6

[0ld_d0g]

Well, technically it starts when your computer does. Any browser can create a window as fast as IE if it is already running. The cost of doing it like IE does is a slower boot up time and wasted memory when you are not using it.

I assume you're referring to the fact that one particular DLL (mshtml.dll) was loaded by the Windows UI shell to render HTML help and other things. AFAIK, this isn't true for recent versions of Windows.

In any case, the fact that one DLL is in memory isn't going to change the startup speed by that much. There are many files that IE needs to load and other misc initialization stuff that IE needs to do before it starts up. (e.g. load addons, setup protected mode, phishing filters etc)

FWIW, on my box Chrome starts up quicker than IE8. So its:

1. Chrome
2. IE8
3. Opera
4. FF

Every client is a potential proxy server

[symbolset]

In a world where rootkits and malware infest nearly half of Windows desktops and deliver a tranparent proxy with encrypted tunnels into your precious LAN, all servers are web facing servers. The security of the firewall is a myth serious professionals no longer subscribe to, and many never did. Secure your intranet server and your desktops as if they were in your DMZ because for all practical purposes that's where they are.

Re:It's not all about you

[jonadab]

> If ActiveX was designed to create lock-in,
> why did Microsoft abandon it?

Did you SLEEP through the late nineties?

Microsoft very reluctantly abandoned ActiveX, after years of dragging their feet, only when it had long since become absolutely crystal clear that their sole other option was to claim, with a straight face, that when it comes to connecting your corporate assets to the internet, security totally doesn't matter at all. Even then they would have opted for that, if they could have come up with any kind of plan for making people believe it.

I'm not sure ActiveX was created for the purpose of generating lock-in. Perhaps they had something else in mind originally.

But I *am* reasonably sure that after it was created, Microsoft liked the fact that it created lock-in.

And EVERYONE in the industry saw how reluctant they were to abandon it, and how long it took them to finally give up and do so after every single security professional in the entire IT industry had written (often quite vehemently) about how grossly horribly irresponsible its design was.