unixmuseum wrote:The two unpatched flaws in the Mozilla browser could allow an attacker to take control of your system.
you have "let websites install software" turned on. Sigh.
In recent months Firefox has gained significant market share from Microsoft's Internet Explorer, partly because it is considered less vulnerable to attacks. However, industry observers have long warned that the browser is more secure partly because of its relatively small user base. As Firefox's profile grows, attackers will increasingly target the browser.
"Industry observers" = bootlicking Microsoft toady apologists, e.g. Ziff-Davis nitwits exploiting the ignorance of the general public. IF
you leave "let websites install software" turned on and if
you then go to a website you have no knowledge of and if
you then ask that site to install some programs without even looking at them, then
you are at risk of compromising your (most likely Windows) computer. (Doubt very much that Internet Exploder spyware or viruses will install on my SGI computers.)
This fearsome risk certainly has me quivering under the bed at night.
By default, Firefox allows software installations from update.mozilla.org and addons.mozilla.org, but users can add their own sites to this whitelist.
Agreed. The Mozilla people have turned to shit as well, what with their "send email as html" and garbage browser defaults. Still, the Mozo products can easily be reconfigured or dumped entirely. IE, with half its dll's intricately entwined into the os'es guts, is another matter entirely. But this "industry observers" crap, jesus. Whatta crock.