Full Disclosure mailing list archives

RE: IE is just as safe as FireFox

From: "Todd Towles" <toddtowles () brookshires com>
Date: Thu, 18 Nov 2004 10:29:09 -0600

Borja makes a good point. Just like asking...why do e-mails have
incorrect words in them, when they are all instantly spell checked? ;)

-----Original Message-----
From: full-disclosure-admin () lists netsys com 
[mailto:full-disclosure-admin () lists netsys com] On Behalf Of 
Borja Marcos
Sent: Thursday, November 18, 2004 8:47 AM
To: Poof
Cc: full-disclosure () lists netsys com
Subject: Re: [Full-disclosure] IE is just as safe as FireFox

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Why is it that Microsoft's code has less quality even

though all code

that's written is instantly audited? (Each line of code is checked 
before it's 'passed' in to the code tree.)


      Design, design and design. Also, design.

      Writing programs isn't a simple matter of writing code 
and auditing it for buffer overflows. What about the lousy 
MIME-type handling in IE, detecting intelligently (but after 
declaring it harmless in the "security check") that a program 
disguised as an audio file could actually be an executable, 
and happily running it?

      It is bad design. The same as ActiveX. Why are many IE 
security problems avoided by disabling "Active Scripting"?

      There seems to be an obsession with "code" these days. 
And people affected by such disease forget that the code 
should come after a good design, and a bad design can only be 
fixed scaping it and starting over.





      Borja.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (Darwin)

iD8DBQFBnLX5ULpVo4XWgJ8RAlTJAJ92yXv8C5ArhrGzsHCNXBQHyECqhQCcDoL9
LGLighoTQw5rSwV2/mMp72k=
=TDnR
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

RE: IE is just as safe as FireFox, (continued)
- - - RE: IE is just as safe as FireFox joe (Nov 17)
    - Re: IE is just as safe as FireFox Georgi Guninski (Nov 18)
    - RE: IE is just as safe as FireFox joe (Nov 19)
    - Re: IE is just as safe as FireFox Georgi Guninski (Nov 19)
    - Re: IE is just as safe as FireFox john morris (Nov 19)
    - RE: IE is just as safe as FireFox joe (Nov 20)
    - Re: IE is just as safe as FireFox devis (Nov 20)
  - RE: IE is just as safe as FireFox joe (Nov 17)
- RE: IE is just as safe as FireFox Todd Towles (Nov 16)
- RE: IE is just as safe as FireFox Stuart Fox (DSL AK) (Nov 16)
- RE: IE is just as safe as FireFox Todd Towles (Nov 18)
- IE is just as safe as FireFox houser (Nov 24)
  - Re: IE is just as safe as FireFox devis (Nov 24)
    - RE: IE is just as safe as FireFox joe (Nov 24)
    - Re: IE is just as safe as FireFox devis (Nov 24)
    - RE: IE is just as safe as FireFox Phillip R. Paradis (Nov 25)
    - Re: IE is just as safe as FireFox devis (Nov 25)
    - RE: IE is just as safe as FireFox Phillip R. Paradis (Nov 25)
    - Re: IE is just as safe as FireFox Gregh (Nov 25)
    - RE: IE is just as safe as FireFox Phillip R. Paradis (Nov 25)
    - Re: IE is just as safe as FireFox Eric Paynter (Nov 25)