EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

03.17.10

Internet Explorer 9 Seems Less Secure Than Predecessors; Microsoft Plays the Vapourware Game Against Rival Web Browsers

Posted in Microsoft, Security, Windows at 4:34 pm by Dr. Roy Schestowitz

Summary: Internet Explorer 9 removes security features and lies about its standards compliance using improper benchmarks

MICROSOFT made some Internet Explorer patches available last week, only to discover that Internet Explorer is under a new wave of attacks (due to flaws which cannot be patched until next month). What did Microsoft do? To the gurus out there it advised that they apply some registry hacking. Windows is easy, eh? SJVN writes about this issue which we covered before:

A Quick IE Fix

[...]

The first one disables the peer factory class in the Windows registry. ‘Peer factory’ is used by the iepeers.dll binary program in IE 6 and 7 on Windows XP and Windows Server 2003 to call some kinds of Windows functionality from within IE. The most common way it’s used is to print from IE. The downside of this fix, as you might guess, is that it will stop IE’s print functionality from working.

Try explaining this security measure to people who are fearful of computing.

According to another new article from SJVN, Internet Explorer 9 will fix almost nothing when it comes to security. Just like when Vista 7 was planned and released, Microsoft said nearly nothing about improved security; it’s the same when it comes to Internet Explorer.

While Microsoft seems focused on some good things, like improving IE’s speed and finally making it more compatible with the forthcoming HTML 5 standard, I didn’t see a lot about improving the program’s own built-in security. Indeed, this early test-drive model [of IE 9] doesn’t even include IE 8′s SmartScreen anti-malware filter and private-browsing function.

This sounds familiar because according to two separate sources, Vista 7 is also less secure than Vista [1, 2]. They go backwards.

But now comes the interesting part. A reader who wishes to remain anonymous has told us that, regarding Microsoft’s “test browser compliance”, it will “test browsers, except for their current version, Internet Explorer 8″. To quote the message:

“Download the latest Windows web browser”. Is it fair testing a future release against the current versions of the rest? Also the original stand alone SVG files appear to be missing.

“This website contains several collections of test pages that were developed in conjunction with the World Wide Web Consortium (W3C) working groups. These tests make it possible to validate a browser’s compliance with specific web standards”

http://samples.msdn.microsoft.com/ietestcenter/#svg11e2

Microsoft never likes to compare the comparable. It pits vapourware against real products, as usual. It must mean that Microsoft is behind, not ahead.

“In the face of strong competition, Evangelism’s focus may shift immediately to the next version of the same technology, however. Indeed, Phase 1 (Evangelism Starts) for version x+1 may start as soon as this Final Release of version X.”

Microsoft, internal document [PDF]

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. When Patent Lawyers Attack the Messengers for Stopping Software Patents, Ignoring Patent Law's New Post-Alice Reality

    Analysis of recent articles from patent lawyers, highlighting their bias and disregard for facts in this system which has become increasingly intolerant toward software patents



  2. Links 3/6/2015: More Ubuntu Phones, Qt Releases

    Links for the day



  3. Links 2/6/2015: Black Lab Linux Releases, Krita Fundraiser

    Links for the day



  4. IRC Proceedings: May 17th - May 30th, 2015

    Many IRC logs



  5. Sharp Drop in Microsoft Patents, But Not in Patent Assaults, Coordinated Attacks on Android/Linux, and Googlebombing

    Using patent blackmail (antithetical to the original goal of patents) and other forms of blackmail, Microsoft is desperately trying to crush GNU/Linux and Android, all while Windows 'sales' fall and investors lose confidence



  6. EPO Reluctantly (and Privately) Confirms Giving Public Money for Military-connected 'Control Risks' to Spy on Journalists and Their Sources While Techrights is Under Fresh DDOS Attacks

    The EPO President -- or anyone who is referred to as 'appointing authority' -- finds himself even deeper in a scandal as he silently attacks the very same people whom he pretends to negotiate with by contracting spies from London (to maliciously target British journalists)



  7. Links 1/6/2015: wattOS R9, Tanglu 3

    Links for the day



  8. Supreme Failure: With SCOTUS Approval of Patent Trolls and a Push by Justice Department to Reinforce Copyright on APIs (at SCOTUS Level) the Future Looks Gloomy

    The patent system goes wild in terms of scope, the nature of the plaintiff (merely purchasing patents), and the extension of patents to monopolies on named APIs (by virtue of deranged interpretation of copyright law)



  9. McAfee Associates Free Software and Anonymity With Crime

    Insecurity firm McAfee, whose record on Free software is appalling (it is Windows-centric for its business), continues years of tradition by slinging mud at Tor



  10. The EPO Still Wastes Public Money on Publicity Stunts and 'Reputation Management' Campaigns

    The European Patent Office (EPO) is misusing public funds to manufacture self-congratulatory publicity for itself whilst attacking those who write negative commentary



  11. The Lessons of Stuxnet: Never Use Microsoft Windows

    Windows is sufficiently 'NSA-compatible' for remote compromise and physical damage (sabotage) to highly sensitive, high-risk equipment



  12. Links 30/5/2015: Wine 1.7.44, Berry Linux 1.20

    Links for the day



  13. White House Intervention Harms Android and Every Software Developer on the Planet

    US Solicitor General Donald Verrilli urges the Supreme Court (SCOTUS) to let APIs be covered by copyrights, rendering almost every program a potential copyright violation



  14. Microsoft Lobbying in India Shoots Down or At Least Weakens Free/Libre Software Policy

    Microsoft's covert efforts (lobbying with the help of public partners like NASSCOM) to eliminate an India-leaning software policy in India is finally paying off



  15. Propaganda Mode for UPC Agreement Whilst EPO Increasingly Grants Patents on Software

    In order to make the Unitary Patent a reality (towards a 'no place to hide' patent approach) misleading claims are being made



  16. Patents Are Not Source Code

    Ford is once again misleading regarding Open Source, mischievously associating a patent pledge with Open Source



  17. Links 29/5/2015: ALT Linux 7.0.5, Google I/O 2015

    Links for the day



  18. Links 28/5/2015: SourceForge Hijack, RIP Marco Pesenti Gritti

    Links for the day



  19. Censorship on Reddit Has Gotten (Condé) Nasty and Silent, Even Actively Silenced

    Condé Nast has turned Reddit into a platform of censorship after the acquisition



  20. The Supreme Court of the United States Helps Patent Trolls

    In an unforeseen kind of ruling, the same court which slapped down a lot of software patents last year is now legitimising the actions of a patent troll



  21. Patent Lawyers Fight Hard for the Future of Software Patents

    Media that is dominated by patent lawyers and targets an audience of patent lawyers refuses to accept the post-Alice reality



  22. Fortune Glorifies Patent Troll Jay Walker (Patent Utility)

    Jay Walker, a patent troll, creates a Web-based trolling/'licensing' service and the corporate media helps him



  23. Stealing Android's Thunder, Making It All About Apple and Microsoft During Google I/O

    Misleading articles and conjoined media/analyst attacks on Android coincide with Google's event where major Android announcements are being made



  24. British Government May be a Step Closer to GNU/Linux (on the Desktops, Not Just Servers)

    The British government stops paying the criminal company that blackmails its members, thereby increasing the possibility of complete escape from proprietary software



  25. Microsoft's Patent Allies LG and Sony Agree to Put Microsoft Inside Android

    LG and Sony (of Rockstar Consortium) follow Samsung and Dell in Microsoft's campaign to turn Android into 'Microsoft Android' using patents-induced pressure/leverage



  26. Yet Another Major Security Deficiency in UEFI

    UEFI is inherently insecure, more so than the alternatives which it strives to replace, including Free/libre ones



  27. Links 27/5/2015: Fedora 22 is Out, Mandriva Liquidated

    Links for the day



  28. Patent Scope at the EPO is Totally Out of Control, UPC Will Make Things Worse

    A look at the practical issues with the EPO, where patent scope and litigation scope have been vastly extended so as to benefit multinational corporations and possibly patent trolls



  29. Links 26/5/2015: Reviews of Kubuntu 15.04, Linux 4.1 RC5

    Links for the day



  30. Süddeutsche Zeitung Says Talking Helps While EPO Management Back-stabs Other Side of the Table

    German media gives the impression that there is peace and harmony now that Benoît Battistelli and his circle of power speaks to staff, but nothing is said about simultaneous (albeit covert) attacks against that staff


CoPilotCo

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

CoPilotCo

Recent Posts