Are the Browser Wars Back? - How Mozilla's Firefox trumps Internet Explorer. By Paul Boutin
I usually don't worry about PC viruses, but last week's Scob attack snapped me awake. The clever multi-stage assault, carried out by alleged Russian spam crime lords, infiltrated corporate Web servers and then used them to infect home computers. The software that Scob (also known as Download.ject) attempted to install on its victims' machines included a keystroke logger.
In less than a day, Internet administrators sterilized the infection by shutting down the Russian server that hosted the spyware. But not before a barrage of scary reports had circled the world. "Users are being told to avoid using Internet Explorer until Microsoft patches a serious security hole," the BBC warned. (Disclosure: Microsoft owns Slate.) CNET reporter Robert Lemos zeroed in on why the attack was so scary. "This time," he wrote, "the flaws affect every user of Internet Explorer." That's about 95 percent of all Net users. No matter how well they had protected themselves against viruses, spyware, and everything else in the past, they were still vulnerable to yet another flaw in Microsoft's browser.
Scob didn't get me, but it was enough to make me ditch Explorer in favor of the much less vulnerable Firefox browser. Firefox is built and distributed free by the Mozilla Organization, a small nonprofit corporation spun off last year from the fast-fading remnants of Netscape, which was absorbed by AOL in 1999. Firefox development and testing are mostly done by about a dozen Mozilla employees, plus a few dozen others at companies like IBM, Sun, and Red Hat. I've been using it for a week now, and I've all but forgotten about Explorer.
You've probably been told to dump Internet Explorer for a Mozilla browser before, by the same propeller-head geek who wants you to delete Windows from your hard drive and install Linux. You've ignored him, and good for you. Microsoft wiped out Netscape in the Browser Wars of the late 1990s not only because the company's management pushed the bounds of business ethics, but also because its engineers built a better browser. When Netscape CEO Jim Barksdale approved the Mozilla project—an open-source browser based on Netscape's code—in 1998, it seemed like a futile act of desperation.
But six years later, the surviving members of the Mozilla insurgency are staging a comeback. The latest version of Firefox, released this Monday, has a more professional look, online help, and a tool that automatically imports your bookmarks, history, site passwords, and other settings from Explorer. Meanwhile, all-conquering Internet Explorer has been stuck in the mud for the past year, as Microsoft stopped delivering new versions. The company now rolls out only an occasional fix as part of its Windows updates. Gates and company won the browser war, so why keep fighting it?
The problem is that hackers continue to find and exploit security holes in Explorer. Many of them take advantage of Explorer's ActiveX system, which lets Web sites download and install software onto visitors' computers, sometimes without users' knowledge. ActiveX was meant to make it easy to add the latest interactive multimedia and other features to sites, but instead it's become a tool for sneaking spyware onto unsuspecting PCs. That's why the U.S. Computer Emergency Readiness Team, a partnership between the tech industry and Homeland Security, recently took the unusual step of advising people to consider switching browsers. Whether or not you do, US-CERT advises increasing your Internet Explorer security settings, per Microsoft's instructions. (Alas, the higher setting disables parts of Slate's interface.) Even if you stop using Explorer, other programs on your computer may still automatically launch it to connect to sites.
I usually don't worry about PC viruses, but last week's Scob attack snapped me awake. The clever multi-stage assault, carried out by alleged Russian spam crime lords, infiltrated corporate Web servers and then used them to infect home computers. The software that Scob (also known as Download.ject) attempted to install on its victims' machines included a keystroke logger.
In less than a day, Internet administrators sterilized the infection by shutting down the Russian server that hosted the spyware. But not before a barrage of scary reports had circled the world. "Users are being told to avoid using Internet Explorer until Microsoft patches a serious security hole," the BBC warned. (Disclosure: Microsoft owns Slate.) CNET reporter Robert Lemos zeroed in on why the attack was so scary. "This time," he wrote, "the flaws affect every user of Internet Explorer." That's about 95 percent of all Net users. No matter how well they had protected themselves against viruses, spyware, and everything else in the past, they were still vulnerable to yet another flaw in Microsoft's browser.
Scob didn't get me, but it was enough to make me ditch Explorer in favor of the much less vulnerable Firefox browser. Firefox is built and distributed free by the Mozilla Organization, a small nonprofit corporation spun off last year from the fast-fading remnants of Netscape, which was absorbed by AOL in 1999. Firefox development and testing are mostly done by about a dozen Mozilla employees, plus a few dozen others at companies like IBM, Sun, and Red Hat. I've been using it for a week now, and I've all but forgotten about Explorer.
You've probably been told to dump Internet Explorer for a Mozilla browser before, by the same propeller-head geek who wants you to delete Windows from your hard drive and install Linux. You've ignored him, and good for you. Microsoft wiped out Netscape in the Browser Wars of the late 1990s not only because the company's management pushed the bounds of business ethics, but also because its engineers built a better browser. When Netscape CEO Jim Barksdale approved the Mozilla project—an open-source browser based on Netscape's code—in 1998, it seemed like a futile act of desperation.
But six years later, the surviving members of the Mozilla insurgency are staging a comeback. The latest version of Firefox, released this Monday, has a more professional look, online help, and a tool that automatically imports your bookmarks, history, site passwords, and other settings from Explorer. Meanwhile, all-conquering Internet Explorer has been stuck in the mud for the past year, as Microsoft stopped delivering new versions. The company now rolls out only an occasional fix as part of its Windows updates. Gates and company won the browser war, so why keep fighting it?
The problem is that hackers continue to find and exploit security holes in Explorer. Many of them take advantage of Explorer's ActiveX system, which lets Web sites download and install software onto visitors' computers, sometimes without users' knowledge. ActiveX was meant to make it easy to add the latest interactive multimedia and other features to sites, but instead it's become a tool for sneaking spyware onto unsuspecting PCs. That's why the U.S. Computer Emergency Readiness Team, a partnership between the tech industry and Homeland Security, recently took the unusual step of advising people to consider switching browsers. Whether or not you do, US-CERT advises increasing your Internet Explorer security settings, per Microsoft's instructions. (Alas, the higher setting disables parts of Slate's interface.) Even if you stop using Explorer, other programs on your computer may still automatically launch it to connect to sites.
Comments