Re: IE is just as safe as FireFox

[nicolas vigier <boklm () mars-attacks org>]

On Thu, 11 Nov 2004, Danny wrote:

> Yes, IE security needs work. Yes, Firefox is a great web browser.
>
> However, if Firefox or any other browser had the same market share as
> IE, would it really be that much more secure? There sure would be a
> lot more people trying to find holes in Firefox if it had the same
> user base.

Yes, IIS security needs work. Yes, Apache is a great web server.

However, if Apache or any other web server had the same market share as
IIS, would it really be that much more secure ? There sure would be a
lot more people trying to find holes in Apache if it had the same user
base.

Wooops. Netcraft tells us that 67% webservers are running Apache while 21%
running IIS. Why are there so much worms targeting IIS and not so much
for Apache ?

The truth is that some programs have a bad design for security while
some others have a better one. A good program will not have a lot of
vulnerabilities even with a lot of users, a bad program will have a lot
of known vulnerabilities even with not a lot of users.

There are aldready a lot of people looking for holes in Mozilla, I don't
think we'll see a lot of changes if 90% people start using it.

-- 
gpg fp: 8a7e 9719 b38d 97c6 6af0  d345 12a0 3708 2c8c 3c11
http://boklm.mars-attacks.org/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html