Slashdot Mirror

← Back to Stories (view on slashdot.org)

Corporate IT Just Won't Let IE6 Die

Posted by CmdrTaco on from the your-arms-bloody-off dept.

alphadogg writes "Security experts, industry analysts, and even Microsoft recommend that IT departments upgrade Internet Explorer 6, yet new research shows that while there may have recently been a mock funeral for the aging browser, IE6 is still around and doing well, especially during standard business hours." The article says that they are seeing 6-13% peaking during business hours. Around here we see less than 1.5% IE6, but since we see only 10% IE in general, I imagine we're just lucky.

28 of 479 comments (clear)

  1. My plate is pretty full right now... by stillpixel · · Score: 5, Informative

    but I'm working on it! The only way to get Corporate/Management off of IE6 is to fix any web apps you have in your organization that won't work on anything but that.

    1. Re:My plate is pretty full right now... by fieldstone · · Score: 4, Insightful

      But... isn't using IE6 in a corporate environment the equivalent of saying, "Yes, please infect my computers with malware without warning!"? That's not even to touch matters of compatibility... Doesn't security mean anything? And wouldn't most IE6 web apps work in IE8 under its compatibility mode... or am I being overly optimistic about said compatibility mode?

    2. Re:My plate is pretty full right now... by Z00L00K · · Score: 4, Interesting

      In any case - all those in the surveys must be very lucky to see such low numbers when it comes to IE6.

      A system that I run still has more than 65% of the traffic from IE6, luckily the last clients have abandoned using IE 5.5.

      Other figures are 21.1% for IE7, 12.7% for IE8 and 0.8% for the other browsers (Firefox, Safari.)

      --
      If builders built buildings the way programmers wrote programs, then the first woodpecker would destroy civilization.
    3. Re:My plate is pretty full right now... by Nadaka · · Score: 4, Informative

      You are being over optimistic about compatibility mode. It isn't identical to what it is supposed to emulate.

    4. Re:My plate is pretty full right now... by sgbett · · Score: 4, Funny

      We see over 80% IE6, most of our users are NHS, hospital staff, clinicians etc

      Kind of appropriate in a way.

      --
      Invaders must die
    5. Re:My plate is pretty full right now... by fieldstone · · Score: 5, Interesting

      It's because of familiarity, I'm pretty sure. I've had clients absolutely refuse to use anything else, even IE8, because it "felt" (in other words, looked) different from what they were used to. My solution to this is usually one of the Firefox themes that makes Firefox look like IE. The IE6 one is pretty flawless.

    6. Re:My plate is pretty full right now... by amplt1337 · · Score: 5, Insightful

      No, it's equivalent to saying "We need to run mission-critical software that won't run on higher versions of IE."

      I've actually had to go around uninstalling IE 7 and 8 from user machines and re-installing IE 6 because the users have to run IE6-only software, or the vendor's IE7 installer doesn't work, or there are bugs in the IE 7 version, etc. etc. Sure, I'd love to get rid of the vendor -- you think that's easy?

      Of course, I also encourage people to do any *ahem* personal browsing in Firefox anyway, but IE6 isn't going to go away until we don't need it. If the web-designer artistes out there want to complain about cross-browser compatibility, they can either bite me, or come down and do my users' jobs for them.

      --
      Freedom isn't free; its price is the well-being of others.
    7. Re:My plate is pretty full right now... by causality · · Score: 4, Insightful

      It's because of familiarity, I'm pretty sure. I've had clients absolutely refuse to use anything else, even IE8, because it "felt" (in other words, looked) different from what they were used to. My solution to this is usually one of the Firefox themes that makes Firefox look like IE. The IE6 one is pretty flawless.

      If a client cares about that more than all of the problems with IE6, then they should not have a position in their company that allows them to make IT-related decisions.

      --
      It is a miracle that curiosity survives formal education. - Einstein
    8. Re:My plate is pretty full right now... by eln · · Score: 4, Insightful

      Exactly. Anyone who's had to deal with trying to get an internal development organization to update anything knows how painful it can be. Absent a clear and urgent need expressed from corporate executive management, they'll put your concerns on the back burner forever, especially if they also develop for external paying clients. So, if you have a tool that's only used internally, updates to that tool can take many months or even years to get done. Meanwhile, the poor downtrodden IT guys have to support the ancient monstrosity the whole company depends on but no one wants to spend the time or money updating because it doesn't immediately generate revenue. Thus, we get stuck with IE6 years beyond when it should have been retired.

    9. Re:My plate is pretty full right now... by Lord+Ender · · Score: 4, Interesting

      You are wrong. This is not "the only way." Another way to get off of IE6 is to create a "legacy application terminal server" which contains shit that you can't get rid of but don't want to have widely-deployed. Such a system should have tight security controls and should be very difficult to use (to encourage people to upgrade their apps).

      --
      A slashdotter who didn't build his own computer is like a Jedi who didn't build his own lightsaber.
    10. Re:My plate is pretty full right now... by rwa2 · · Score: 5, Interesting

      It's pretty hopeless, as far as I tell. The past 2 major aerospace/defense corporations I've worked for have invested heavily in rolling out all of their mandatory on-line training and timecard accounting using software that happens to only work in IE6. This mandatory training is required to meet all kinds of legal and policy requirements... ethics training, security training, etc. So it's not really the IT department per se that's holding everything back, other than not being more successful in standing by web standards back when they were deciding to deploy all that cruft.

      On the bright side, Firefox has really taken off as a secondary day-to-day browser. Microsoft really shot themselves in the foot with their vendor lock-in this time, since no major corporate customer could successfully upgrade to IE7 or IE8 because it would break all of their meticulously tested training and timecard apps. But they can certainly install and develop new apps for alternative browsers.

      This has also been a boon for virtualization... I've been running the corporate load of WinXP+IE6 under VMware, so I can actually have a 64-bit OS on the bare metal, yet comply with all the corporate application and security and encryption policies on my VM. As a nice side benefit, Outlook can't thrash more than 1 CPU or gobble up all my memory this way.

      I think Microsoft might finally regain some ground with corporate deployments with Windows 7 only because it provides a WinXP mode that might let them run all their legacy cruft. But it will still take 6 months to a year after Windows 7 was released for the IT departments to finish testing and remastering for widespread deployment, so we won't know for sure for another while yet.

    11. Re:My plate is pretty full right now... by causality · · Score: 4, Insightful

      It's mostly due to the relationship between the IT staff and the regular employees. In some situations, IT can dictate quite a bit and is left to make their own decisions about security, but in most situations they are essentially the servants of the employees - someone to clean malware off of their computers and be whined at. If the employee(s) doesn't/don't want IE6, then it's harder for IT to make a case to management (since they could otherwise claim that the employees also want an upgrade) to justify upgrading, and most just won't bother unless there's lots of user demand. If the users are against it, it takes either a somewhat reckless IT dept. or a tech-savvy manager to realize that this stuff needs to get done.

      A hypothetical: if my doctor told me that there was a very good medical reason for me to do something, I would follow his advice. I guess you could say that doing what he tells me I should do makes me a "servant" except that he doesn't have a way to force me to do anything. I can realize on my own that it's in my interests to follow the advice he gives me and that I probably don't have the expertise it would take to seriously dispute him.

      Or I could ignore my doctor's hypothetical advice. Since I am paying/hiring him, I can think of him as my "servant" and insist that he never tell me anything I don't want to hear, especially those things that would suggest I should change my lifestyle or otherwise adapt to something new. I can freely ignore any such advice and take the attitude of "what does he care, he got paid." I could do that, but ignoring the sound advice of an expert in his field who is trying to look out for you is generally unwise.

      On the one hand, if you expect users to understand and be able to follow basic procedures without making silly errors they tell you things like "but I'm not a computer expert, I just want it to work!" On the other hand, when you present them with a real computer expert they will ignore his advice the second it means they might lose a pretty icon or a shiny button. So they are like my second hypothetical situation. They neither wish to become experts nor listen to existing experts.

      Name one other profession or trade or area of expertise where expert advice is so routinely ignored for such trivial reasons. It doesn't happen with doctors, lawyers, plumbers, electricians, auto mechanics or insurance agents. "If the users are against it" their ability to understand the full implications of their decision and their background in IT should be considered first and foremost. If not, why don't we have such "mob rule" in all the other departments of major corporations? I'm sure most users would like a $300k/yr raise too, so does that mean Accounting is obligated to accommodate them?

      --
      It is a miracle that curiosity survives formal education. - Einstein
    12. Re:My plate is pretty full right now... by gcmd · · Score: 5, Insightful

      I beg to differ. I give out medical advice all day, things that are PROVEN to improve your life, decrease your risk of death, and people blissfully ignore it all the time. Stop smoking, get more exercise, watch your diet are just a few of the most popularly ignored pieces of advice. So if people can ignore advice designed to save their lives, why are we surprized that they ignore advice to save their computers?

  2. Well... by drolli · · Score: 4, Insightful

    Once the crappy internal web applications for managing some forms have been duct-taped together by a student worker, nodody dares to touch a single thing. You can only get burned.

    1. Re:Well... by gstoddart · · Score: 4, Insightful

      Call in a consulting team, get a quote for reworking it. Doesnt that neatly solve the problem?

      I think you're grossly mis-underestimating the size of the organizations which are still mandating IE 6 as a corporate standard.

      For instance, the government of Canada, I believe, still uses IE 6 as a standard -- that represents something like 200,000+ users.

      The scope of the project to re-certify that much software isn't a small consulting team, and it's sure as hell not a "Rent-A-Coder" fix as suggested in a sibling post. You're talking about vast quantities of commercial software which are already deployed to a large user base.

      The problem becomes that IE 6 is deeply entrenched, and involved in a lot of tasks organizations aren't really willing to have too much down-time with. So, the status quo tends to become a factor.

      --
      Lost at C:>. Found at C.
    2. Re:Well... by Captain+Spam · · Score: 5, Funny

      Call in a consulting team, get a quote for reworking it. Doesnt that neatly solve the problem?

      Now presenting: The Bean Counter - A one-act play.

      You: "This code is a mess! It was written by a bunch of low-grade college kids for cheap and is impossible to maintain! We need to call in a consulting team to get a quote for-"

      (in a flurry of papers, a tweed-suited bean counter appears, apparently from a pocket dimension, as there is no visual evidence to suggest where he came from, nor are there any obvious entrances to where he is standing now. You don't even recall him ever working in the company before; he just IS)

      Bean Counter: "NO! We need to save money over that plan! The money must be saved! SAVE IT! It's endangered!"

      You: "But... save money over what?"

      Bean Counter: (eyes grow wide) "MONEY! You save MONEY!!! Now look, we can easily solve this problem by hiring a bunch of low-grade college kids for cheap. That'll save us all sorts of money. Do this now."

      You: "But that's what got us in this mess in the first place! We can't-"

      Bean Counter: "Listen, you young punk, I know how money works. You don't. I've already gone over all the specs, and these college kids can write the same amount of codes for much less per-code than some fancy-schmansy overpriced professional. See this chart? It proves it."

      You: "That's not how code works! There's quality concerns that-"

      Bean Counter: (now furious) "DO YOU SEE THE CHART? LOOK AT THE CHART! THE CHART! THE CHART! It CLEARLY shows that the college kids can write an average of 650 lines of code more than your stupid 'trained professionals' per every dollar spent. That's called 'economical', you miserable snot! Are you TRYING to run this company into the ground?"

      You: "Do you even understand the basic economics of programming at all?"

      Bean Counter: "No! I don't waste my precious time and money with your worthless hobbies! I understand MONEY. Now shut up and do whatever it is you're paid to do, I've already got your boss putting MY plan in motion."

      (end scene)

      --
      Demanding constant attention will only lead to attention.
    3. Re:Well... by plague3106 · · Score: 4, Interesting

      Yes, the path you describe is exactly the problem. You stepped outside your field, and did a poor job. Not your fault really, nobody should have asked you to do it, and I understand that you probably couldn't say no. But someone with the proper skills could have done it correctly and probably around the same kind of cost.

  3. We still see 22% by ducomputergeek · · Score: 4, Informative

    22% of all hits to our site are from IE6, but IE 6 users still account for something like 40% of all orders (i.e. revenue) for the site. And anytime we break anything with IE6 we hear about it quickly. This is down from about 45% of all browser hits and nearly 60% of all orders last year.

    --
    "The problem with socialism is eventually you run out of other people's money" - Thatcher.
  4. Hey Taco by epiphani · · Score: 4, Interesting

    Just out of curiosity, what is the browser breakdown here?

    --
    .
  5. As a general rule by Palestrina · · Score: 4, Funny

    If you are still using I.E. 6 then you do not have "Corporate IT". Someone should go into the server room and poke the guy with a stick, and see if he moves. If not, call 911 on your rotary phone.

    1. Re:As a general rule by nosfucious · · Score: 5, Insightful

      Go poke the CIO instead. That's where the buck stops.

      An IT department can make all the technical cases it want to. However, until the equation of $$$StandStill is less than $$$Moveforward, $$$StandStill is where you'll be.

      And no, the CIO is almost never a technical weenie. It's just another seat on the board, with fat shareholder priviledges.

      --
      Q:I was listening to a CD in Grip and it sounded horrible! What's up? A:Perhaps you are listening to country music
  6. We scare our customers who run IE 6 & 7 by Anonymous Coward · · Score: 5, Interesting

    We're using the security hole in IE 6 and 7 where you can execute code with IE's image parser.

    Our customer comes to our office for a meeting where he demands IE 6 & 7 support. We tell him to open his laptop and go to google.com. When downloading the google logo image we have configured our router to redirect to our infected image file.
    Then we tell our customer to reboot. After the reboot we tell him to check his mail inbox in outlook and then tell us what the new mail he has says.

    He gets really suprised when he sees his login password in clear text. And from that moment IE8 is a minimum requirement.

    This works on every customer we have tried it on, they take it seriously when they see the security threat in action. Most people think anti-virus and firewalls protects them. Our job is to tell them that updated software also protects them, and we've failed bigtime when it comes to that.

    1. Re:We scare our customers who run IE 6 & 7 by Tridus · · Score: 4, Insightful

      Now that's a good idea. You should post your infected image code, I'm sure people would love to do the same thing internally.

      --
      -- "So they told me that using the download page to download something was not something they anticipated." - Bill Gates
  7. Re:Legacy apps by DrgnDancer · · Score: 5, Insightful

    I realize this probably wasn't your fault in the first place, but it *is* your company's own fault. Eventually, Microsoft *will* stop supporting IE6 (XP is supposed to go out of support in a few years, and there's no IE6 for Vista or 7). Those millions of dollars *will* have to be spent. Why not start working on it now and spread the pain out. All of this "but it will cost us million of dollars to make our stuff work like it should have in the first place!" whinging by various corporate managers kind of ridiculous. You (not you personally, but generically "you IT managers") know they won't support this stuff forever, you could fix this over time and spend very little quarter by quarter, but you'd rather cry about the million of dollars it will cost all at once when you eventually HAVE to deal with it.

    --
    I don't need a million points of light, just two points of multi-mode fiber and a 10 Gig-E router.
  8. Windows 7 will finally kill IE6 by Entropy_ajb · · Score: 4, Interesting

    The company I work for is begrudgingly moving to IE8 starting a couple weeks from now. The only reason they are moving to it is because they are also starting to role out Windows 7, and IE6 isn't available for Windows 7.

    Therefore they have had no choice but to go through all of the internal sites and fix the numerous ones that only support IE6. Which was the only thing holding them back from pushing IE7/8 onto the XP machines. The good side effect of this is that for the most part all of the internal sites that have been upgraded to support IE8 also support Firefox now.

  9. Re:Legacy apps by Anonymous Coward · · Score: 5, Interesting

    Oh but you forget the joys of virtualization. IE6 can live forever in a VM. Enterprises can go for the next 20 years forcing their workers to use something that barely worked and was horrible even when the tech was current. I know there are people out there virtualizing Netware and NT4 which I fully expect to be doing some critical operations inside a VM like controlling machinery or whatever 100 years from now. I doesn't have to die, even though it probably should die.

  10. Re:Yeah, we're one of the ones stuck with it by natehoy · · Score: 4, Insightful

    I just HOPE that in the future, development teams will fucking stick to standards!

    Microsoft sold senior management on a series of rapid application development tools that allowed developers to write very effective applications very quickly. Rational companies use the most effective tool to solve a business problem, and in a lot of heavy-Microsoft shops those tools were FrontPage, SQL Server, Visual(insert language here), and the rest of the Microsoft development suite that was almost free once you drank the whole glass of kool-aid, Cherry Redmond flavor.

    I don't think in all fairness that anyone could have predicted that Microsoft would not only break compatibility with other browsers, but also break compatibility with their own. The fact remains that a lot of software written with Microsoft toolkits from the IE6 era will only run on IE6. There is no IE6 compatibility mode in any meaningful sense of the term, and there is no "take the source code, shove it into this tool, recompile, now you're IE7+ compatible!" magic bullet, even when you have the original source code and the latest Microsoft tools. It requires recoding. Long, tedious, manual recoding.

    As far as external vendor software goes, hell, "follows Web standards" isn't even on the RFP checklist at many companies now, and it certainly wasn't back then. The "standard" was Microsoft, because that's what everyone ran. If you could write your software more cheaply by using an ActiveX widget, so be it. That's what you did. And Microsoft will always support this stuff, because that's what they do, right?

    The business shops around for the software that best solves the problem they have at the lowest price they can get away with. IT might get involved to make sure it works with the back-end systems, but very few people care too deeply about the desktop.

    Tons and tons of companies used those tools to write applications for their internal use and also for sale to other companies. Then Microsoft came out with IE7 and basically told all of those developers that their applications would need to be almost completely rewritten.

    Development teams will fucking stick to standards, but they are the standards of the company they work for, and last I checked IEEE doesn't run most companies unless I missed the global memo about the planetary business reorganization.

    I'm just glad I never got into desktop application development. Writing useful programming is a whole lot easier on the midrange field, because my apps run on a single box, and I don't give a rat's ass what version of telnet you use to access my apps as long as it supports the 5250 function keys. I'm free to think about functionality, performance, security, and stability. I don't deal with desktop compatibility and what shade of cerulean the "Accept" button needs to be.

    --
    "This post contains words, known to the State of California to cause thought. Wash brain thoroughly after reading."
  11. 11.4% of total visits here by LanMan04 · · Score: 4, Interesting

    I run a large website in the financial sector. About 30k visits per day from "normal people", not techies:

    IE----75.34%
    Firefox----17.49%
    Safari----4.00%
    Chrome----2.35%

    Within IE:
    8.0----61.29%
    7.0----23.50%
    6.0----15.19%

    --
    With the first link, the chain is forged.