Software // Enterprise Applications
Commentary
4/14/2005
09:35 PM
Fred Langa
Fred Langa
Commentary
Connect Directly
RSS
E-Mail
50%
50%

Langa Letter: The Pros And Cons Of Firefox

Firefox is a good browser but not the panacea its most ardent fans think it is. While Microsoft's IE gets most of the attention for its security vulnerabilities, the reality is that Firefox (like other open-source products) has security flaws of its own of that readers need to be aware of, Fred Langa notes.

For an industry built on logic--at their deepest level, computers are logic circuits--blatant illogic somehow manages to cloud many issues.

Take Firefox, for example, a very nice browser from Mozilla.org. It's free, open source, and the result of literally years of development. It's also a cross-platform application, available for Windows, Mac, and Linux--a huge plus in computationally diverse environments because the configuration and training/learning curve is basically the same, no matter what platform the browser's installed on. Its human language support also is extensive, with versions in everything from Afrikaans to Welsh. No question: It's impressive software.

Some also like it simply because it's not from Microsoft. I think this approach has some merit: Whenever Microsoft loses serious competition in any software category, it grows complacent, and the pace of innovation slackens. IE6, for example, came out in 2001; an eternity ago, in computing terms. Except for a boatload of security updates and patches, it's still basically the same browser it was then.

And those security issues aren't trivial: All browsers, by design, open a two-way channel to the servers they connect to; browsers that contain security flaws therefore expose their host PCs--and their owners--to the potential of malicious attack by exploitation of the security flaws. Microsoft's software has exposed more users to more potential and real attacks than any other software.

Root Insecurities
Microsoft's problems with online security stretch back to the early days of Windows, when networking was somewhat of a black art. Much of Windows' internal development in Windows 3.1 and 3.11 was to make Windows network-aware and largely self-configuring. The Windows developers mostly succeeded, and Windows became easy to network, with few obstacles to interconnection in the "friendly" confines of LANs, where other PCs and their users could be regarded as non-hostile.

But the explosion of interest in the Web took Microsoft by surprise, and the company rapidly integrated a browser into Windows, producing an operating system version called "Windows 95 Microsoft Internet Explorer." This, in essence, exposed an easy-to-connect-to operating system to the online world at large; a fact almost immediately exploited by crackers and other cybermiscreants. Microsoft has been busily backfilling security holes ever since; even in later versions of Windows, in which the company should have known better and taken more aggressive steps to lock down the core operating system.

While Microsoft, with a 95% market share, struggled to patch the myriad security holes in all its operating systems, the Mac and open-source products such as Linux gained a reputation for being more secure. In fact, that's one of the main reasons cited now for people switching to Firefox--that it's more secure than Internet Explorer. It's a very appealing concept, and has become part of computing's conventional wisdom: Non-Microsoft = More Secure.

Trouble is, that's a falsehood based on a common error: Failure to adjust for the effects of the installed base.

Previous
1 of 4
Next
Comment  | 
Print  | 
More Insights
Building A Mobile Business Mindset
Building A Mobile Business Mindset
Among 688 respondents, 46% have deployed mobile apps, with an additional 24% planning to in the next year. Soon all apps will look like mobile apps – and it's past time for those with no plans to get cracking.
Register for InformationWeek Newsletters
White Papers
Current Issue
InformationWeek Tech Digest - July10, 2014
When selecting servers to support analytics, consider data center capacity, storage, and computational intensity.
Flash Poll
Video
Slideshows
Twitter Feed
InformationWeek Radio
Archived InformationWeek Radio
Join InformationWeek’s Lorna Garey and Mike Healey, president of Yeoman Technology Group, an engineering and research firm focused on maximizing technology investments, to discuss the right way to go digital.
Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.