Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: New IE flaw and exploit sites/migration to non-MS browser

from [Thor (Hammer of God)] Network Security [Permanent Link]
Subject: Re: New IE flaw and exploit sites/migration to non-MS browser
Date: Sun, 02 Apr 2006 12:22:17 -0800 
The main business reason to stick with IE is the ability to completely
configure all aspects of its operation via Group Policy.  No can't get that
with the other browsers.

t


On 3/31/06 10:17 AM, "Shaffer, Bruce" <security@stsgi.com> spoketh to all:


I have often wondered about where these sites are myself.

As to the security debate of Mozilla vs. IE, at this point in time I
believe that using Mozilla over IE for security purposes is simply an
exercise in security through obscurity which, as we all know, is only
secure while it is obscure.  Now that obscurity is gone, we are seeing
more and more hits on Mozilla.  I haven't seen any business advantages
to using either one over the other, any way it goes you still have
users.

Bruce Shaffer
CISSP
Information Security Engineer, STG.
-B-

-----Original Message-----
From: Murad Talukdar [mailto:talukdar_m@subway.com]
Sent: Thursday, March 30, 2006 8:40 PM
To: focus-ms@securityfocus.com
Subject: New IE flaw and exploit sites/migration to non-MS browser

Does anyone know if there is a public list available that has details of
sites which seek to exploit vulnerabilities in IE 6 etc? I read articles
where people say things like, "experts say that there are almost two
hundred
websites which are exploiting the newly disclosed flaw...blah blah
(FUD?)..," 

Where do these people get these numbers from and where do they get the
info
on the malicious sites from too?

On a related note--how many people have initiated a move away from IE to
Firefox/Opera etc in a corporate environment, due to the perception(is
it
JUST a perception or reality based?) that IE is less secure/more prone
to
exploits?

Kind Regards
Murad Talukdar


 



------------------------------------------------------------------------
---
------------------------------------------------------------------------
---


---------------------------------------------------------------------------
---------------------------------------------------------------------------







---------------------------------------------------------------------------
---------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: New IE flaw and exploit sites/migration to non-MS browser, Saqib Ali
Next by Date:  Re: New IE flaw and exploit sites/migration to non-MS browser, MacLeonard
Previous by Thread:  RE: New IE flaw and exploit sites/migration to non-MS browser, Murad Talukdar
Next by Thread:  RE: New IE flaw and exploit sites/migration to non-MS browser, Bernd Lippert
Indexes:  [Date] [Thread] [Top] [All Lists]