Posted on 01/07/2005 3:06:33 PM PST by KwasiOwusu
A vulnerability in Firefox could expose users of the open-source browser to the risk of phishing scams, security experts have warned.
The flaw in Mozilla Firefox 1.0, details of which were published by security company Secunia on Tuesday, allows malicious hackers to spoof the URL in the download dialog box that pops up when a Firefox user tries to download an item from a Web site. This flaw is caused by the dialog box incorrectly displaying long sub-domains and paths, which can be exploited to conceal the actual source of the download.
Mikko Hypponen, director of antivirus research at software maker F-Secure, said this bug could make Firefox users vulnerable to cybercriminals. "The most likely way we could see this exploited would be in phishing scams," he said.
To fall victim to such a scam, a Firefox user would have to click on a link in an e-mail that pointed to a spoofed Web site and then download malicious software from the site, which would appear to be downloaded from a legitimate site.
(Excerpt) Read more at news.zdnet.com ...
Thank you for the info. At least now I have a working concept of what a DLL file is. It sounds like a problem looking for a place to happen. I guess they need to at least try and share, since there probably wouldn't be any room left on a hard drive if everyone had to have their own unique DLL files. I sure do notice quite a lot of them being checked when I watch Ad-Aware run it's scan.
We'll see. They may have already made up their minds to get a newer model.
Netcraft..
No its not, every server reboot means money spent on administration. If I have to buy more MS servers because of their uptime is it a moot point?
Actually the line of discussion is server load, not whether you need to buy more servers because you spend more money rebooting the one you have.
That IIS has a low and stagnant marketshare, while Apache continues to climb?
What I said, is, and I repeat, Dell does far more business online than Amazon. Its not even close.
If we're talking about the ability of the servers to handle the sales, it only makes sense to talk transactions, not total cost, especially since the average cost per item at Dell is much higher than at Amazon.
And a HUGE chunk of Dell's 40 billion in sales is large corporate and government purchases, which aren't done online. I've been involved in many multi-million dollar purchases from Dell -- and we didn't use their web servers to order. Amazon, however, does everything onlline.
That's "Das Kapital." You really are bad at German, aren't you? That's twice, give it up.
Anyone can use a piece of software.
Yet you insinuated we were commies because we use Firefox.
Doesn't change the fact that the ideology behind the open source movement will make Charmian Mao proud.
Not really, since Mao believed in the state controlling the people, while Stallman's movement is purely about freedom of the people (a very American thing). I'm not saying I often agree with Stallman's philosophical positions, but at least I understand them. I definitely don't agree with his political positions though.
You're looking from the point of view of tests you've read. I'm looking from the point of view of actually using both. There's more too it than speed, but as I said IIS 6 at least now is competitive since it got new features that the other servers have had for years. Microsoft will always be the technological inferior since they can't seem to innovate, only follow.
Of course it won't, because they'll have a large redundant cluster, something IIS also only recently learned to do somewhat decently. This doesn't change the fact that Windows can't maintain the production uptime of a *nix system, so various portions of the cluster will be often unavailable.
Not to get into the "war" per se, but comparing Dell's sales dollars with Amazon's is a bit misleading. One computer sold by Dell may cost $1k - a book from amazon maybe $30. I would EXPECT Dell's annual sales to exceed Amazon's monetarily. Do you have any stats concerning number of sales? THAT would be far more interesting from a number of transactions point of view.
Nevermind, I see the point has already been debated.
Heh. You call that a debate? :)
Now I applaud dell they are eating their own dog food, they sell mainly windows server so to runn *nix would be as embarassing as well, when MS was caught using the tcp/ip stack from BSD. Windows can be made to be a decent server, as I have said we run it as our front end but all the horse paower in the back is either a Mainframe or Unix both of which scale batter and have better uptime..
Actually no, but I see no sense in restating what was already said (and ignored)!
Yea I tried to bring that up but aparently if a floating point number is set to 1000, rather than 25 it means something in terms of server performance..
You seem to be missing the point entirely. If I set up my ancient K6-2-350 laptop to run a site selling customized Gulfstream jets, I could blow away Dell's sales if the machine only took five orders per day.
Meanwhile, Amazon's systems are clearly capable of taking 32 orders per second, plus all the product browsing. That is a test of the strength of their customized Linux servers that Dell's Windows servers will never see with their lower volume.
Yeah, HTTPS really behaves differently when the numbers 25 or 25,000 are transported over it, and decimal really cares if it's storing 25 or 25 million. There are no online retail transactions that would make any of these systems take any more of a load buying computers instead of books.
If you're talking severe reliability and redundancy, Windows doesn't play in that ballpark. You need *NIX on big iron.
You'll find that most of the population (apart from the open source crazies) and most consumers think exactly that way.
Consumers are pissed they didn't get their order, no matter how much they paid.
While it may not have been the Mafiaboy attack, nonetheless, Microsoft was indeed taken down by a DDoS around the same time period.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.