Yeeaaaaaaaaaaaah! What he said. Trying to get killed at SMB Nation?

I want the 10 commandments of IE use from you man, this is your funniest post in a long time!

Preach on my brother!

You’re one funny mofo

Anyone used FirefoxADM to control Firefox Settings via Group Policy?
http://sourceforge.net/projects/firefoxadm

It doesn’t appear there has been much development done for this lately…

I think that project may (as well) have been abandoned. When you think AD/GPO you generally think big business which has policies, firewalls and security in place to diminish the danger that Microsoft IE is in a say SOHO environment. Internet Explorer is a joke, yes, but with sufficient tools around it and proper deployment the damage it can do is limited. While I install Firefox everywhere I would not look to do it from a central location.

But I like IE!

I am seriously considering moving away from it as it seems not a month passes by without a critical this or urgent that with a worm or virus to boot.

Vlad,

I sort of agree with you, but every time I have to patch a product it is a pain. If I look at http://secunia.com/product/11/?period=2006#statistics and http://secunia.com/product/4227/?period=2006#statistics I see that for this year, both required patches for 5 months of the year. One or six, still patching and extreme or high or medium are all a problem for me.

Browsing from the server is bad, but hit a nasty site in FF or IE and you will still be burnt as so many people browse as local admin.

the more popular FF gets, the more sites and people trying to exploit it. By patching my systems, using AV and Windows Defender I have not been hit my spyware or a nasty for as long as I have been using IE. But I also don’t operate as local admin anymore, so any damage would always be restricted.

Now, you might argue that this is what the MS man would say, but this is me, not MR MS talking, but I have patched systems since I had mainframes in 1987, so it is part of the management, not an exception.

ttfn

David

[...] The lesson this month. http://www.vladville.com/2006/08/internet-explorer-security-tips.html#comments Just a follow up to this….  I catch anyone installing Firefox on a server and I’ll use a 2×4 on you. Servers “serve”. Servers don’t surf.  Period.  Therefore there is no need for truly ‘any’ browser on a server.  Nor email for that matter. You don’t go to websites other than MU/WU on a server… not even Vlad’s site. In fact for many server admins.. you could rip out IE all together and it would not phase them a bit.  Yes every month there is seemingly another browser vuln out there…but it’s not just IE …and as long as all of us are running with admin rights… pick a browser any of them… it doesn’t matter.  The malware guys will still nail you.  HD Moore’s month of browser vulnerabilities granted had most found in IE, but Firefox and Opera were not immune.  And in fact there are indeed malware exploits that are specifically targeting Firefox these days.  As long as we’re all running our machnes with administrative rights, a browser is like anti-virus.  Reactive and not proactive. Always one step behind the bad guys. I’d argue that the issue this month is not with the vulnerability of IE, but rather how dependent we are on IE for our line of business apps.  What you should have been ranting about instead Vlad, was not for folks to install Firefox….but rather that there were two Microsoft apps this month that got NAILED by it’s own patches. Microsoft CRM and Navision.  That tells me that those two apps were not properly tested in the patch testing matrix. That, my man, is the thing you should have been making the point about.  I won’t blame Microsoft for patches that affect some of my more bizarre line of business crud that I have.  But at a minimum they should validate all of their own apps. Because you see if they had validated their own, I think they would have found that IE crashing issue and prevented it (my personal opinion not validated on anything at all scientific). That my man is the lesson to be learned from this month’s patches. …that and don’t let me catch anyone installing Firefox or Opera on servers… Published 20-08-2006 02:47 by bradley Filed Under: Rants [...]