Sa [1]:
Citat:
Firefox has its share of security problems, and has probably been saved from real-world attack so far only by its single-digit market share.
Citat:
In late February, the Mozilla Organization released the first update to Firefox, version 1.0.1. There are no new features of note in the new release, but it did fix 17 documented vulnerabilities in version 1.0.
Citat:
For the most part Mozilla wasn't hiding these bugs prior to publishing advisories, but it wasn't publicizing them either. If you know where and how to look, you can get a better picture of security (and other) bugs in Firefox and other Mozilla projects at bugzilla.mozilla.org, the official bug database for Mozilla development. But even here the organization isn't totally open about security bugs; when new ones are reported, the entries in Bugzilla are generally made private for a time while they are investigated and fixed.
Freedom? My arse. MS je čak otvoreniji za javnost što se tiče bugova...
Citat:
And unlike Microsoft, when Mozilla fixes a bug it doesn't release a patch for users.
Stara priča, nisu to bugfixevi nego nove verzije :)))
Citat:
According to
one of the Firefox developers, the infrastructure for the update notification feature at Tools| Options | -Advanced-|Software Update hasn't even been turned on yet.
Pffff, amaterizam at it's best!
Citat:
And there are security problems in version 1.0.1 already, even if there are no advisories for them yet. For instance, on a multiuser machine, such as a Linux system, if one user running as root starts Firefox, and another non-root user starts Firefox, that non-root user's instance of Firefox gains root privileges (bugzilla.mozilla.org/show_ bug.cgi?id=247412).
Xaxaxaxa, znači FF - local root exploit :))
Citat:
Finally, anti-spyware companies Webroot and Sunbelt Software have said that they expect Firefox-specific spyware to start showing up this year, and if the browser's market share continues to increase it's easy to see why it would.
FF zealoti će biti pravovremeno obaviješteni, čak i ako se pojave lab. verzije FF-specific spywarea. bez brige :)
Citat:
So don't forget to update, and don't rest on your Firefox laurels. You're not free of security problems, you just have different ones.
Sad imam čime poklopiti onoga tko mi kaže da je FF super-siguran.
[1] -
http://www.pcmag.com/article2/0,1759,1775806,00.asp