His permalink is broken, but for a little while, at least, you can find the post at the top of Scoble's front page. Robert, a highly visible Microsoft employee, has been a consistent Firefox advocate for some time. Before I got in front of a preview of Longhorn, it was Robert that pointed out that Firefox was working just fine there.
I like a lot of what he has to say, but today it seems like he's taking the easy way out. Since that permalink is broken, I'll take the liberty of excerpting large chunks (hope he doesn't mind):
Now, I know that many people will use this as an opportunity to pitch their favorite products and try to get people to use them. But, ask yourself: "can you guarantee that the product you are recommending is 100% secure?" And, if not, why should I stick up for you when the criminals come after you?Now maybe I'm misreading that but it sounds to me like he's making the argument that since nothing can be 100% safe, there's no point in moving from less safe products to more safe products. I don't think I'm going to spend a lot of time tearing that down except to say that I wouldn't take a car on the highway if it didn't have a bumper and a seatbelt.
Another bit that bothered me was Robert's claim that,
But, the other is that most people don't want to switch so what then? Look at myself. I use Firefox about 40% of the time right now (that means I use IE 60% of the time).What Robert fails to mention here is that one of the primary reasons that "people don't want to switch" is that they don't realize the threats. I'd wager that if we had a computing population that knew as much about technology as Robert does (or even as much as I do) that we'd have a lot of people that wanted to switch. So what's really going here is that users are in the dark about the lurking dangers and Microsoft seems to be quite content with that. It's exactly the kind of statement that Robert makee about 100% safety that helps to keep those users uninformed -- and at risk!
All complex software has bugs. No Web browser is 100% safe. The US Department of Homeland Security didn't say that IE was 100% unsafe and Firefox was 100% safe when they recommended that people "use a different web browser". What they said was, "There are a number of significant vulnerabilities in technologies relating to the IE domain/zone security model, the DHTML object model, MIME-type determination, and ActiveX. It is possible to reduce exposure to these vulnerabilities by using a different Web browser, especially when browsing untrusted sites" (emphasis mine).
Robert does his readers a disservice by hiding behind the (paraphrasing) "people don't like change and why change when the alternative isn't perfect" arguments. I hope when he's had a bit more time to digest the seriousness of all of this that he'll push through the obvious dissonance and consider the computing safety of his readers to be of more importance than whatever conflicting force has pushed him to these specious arguments.
Posted by asa at July 2, 2004 08:39 AMI completely agree Asa. I was very dissapointed when i read that post on Scobles blog- he lost a lot of my respect.
Posted by: Tom Graham on July 2, 2004 11:44 AMAsa -
Could you pass on to the powers that be the GREAT wonderfulness there would be if the FeedHouse page on mozillazine.org had an RSS feed I could toss into an aggregator? Then I woudl only have to subscribe to that to see all the thoughts of everybody workin' on mozilla ;)
- Hunter
Posted by: Hunter on July 2, 2004 01:29 PMRobert is 100 times more honest in his statements than a mozilla zealot, that's why he recommended firefox, but that doesn't mean that supporting all the lies out there coming from various zealots.
Homeland Security first of all recommends few changes on the user's computer, the last recommendation is using a different browser, so you are doing a disservice to us there.
If Mozilla is not secure, why switch to Mozilla? I am still waiting for someone from mozilla who will not trade his honesty for the benefit of gaining more market share in the browser market. For once tell us some truth, not FUD.
Posted by: Daniel on July 2, 2004 02:33 PMI think the point is that it is *more* secure not that it is completely secure.
God, the same argument could be made for changing to high security in the IE internet zone. Yeah you might still get bitten by an exploit that disregards this, so why not just stay in the internet zone?? Fallacious..
Posted by: gman on July 2, 2004 03:31 PMThe last 2 widely published IE vulnerabilities won over a couple of people I know. Especially that last one, grabbing bank passwords *before* SSL kicks in. Very scary, especially since some people were already at the point that they used IE *only* for banking stuff.
Just be careful to state to your friends that Firefox is safer than IE, but even Firefox doesn't guarantee 100% safety. If you state that Firefox will cure all for ever and ever you'll lose at least some converts as soon as there is even /one/ published firefox vulnerability.
Posted by: Av on July 2, 2004 03:39 PMRead again, Daniel, please:
Daniel says:"...than a mozilla zealot, that's why he recommended firefox, but that doesn't mean that supporting all the lies out there coming from various zealots...."
Asa said:"No Web browser is 100% safe."
Posted by: Arthur on July 2, 2004 03:44 PMArthur, yes but saying that Scoble is doing a disservice is a big lie and FUD. I don't think playing dirty helps mozilla, I think it hurts it on the long run. I personally use Firefox, I don't see why someone needs to tell lies to convince people to use Firefox. Just tell the truth, don't try to scare people. After using Firefox people will naturally use it. I am not religious on these issues, but I find it quite natural to recommend firefox to my friends. The FUD from mozilla destroys the credibility, people look like they are bunch of online vandals or something like that, I have friends that believe that I am a crazy zealot when I recommend firefox, even though I recommend Firefox because it increases the productivity. So instead of bashing Microsoft employees here and there, they should be more positive and honest. Everybody says Linux is better, but we know that it sucks in everyway, Firefox is better than IE's latest version, but people don't see a difference between people who tell them to use some unknown, unreliable operating system and a browser which they don't know. Mozilla will lose again, I don't think mozilla advocates understand how to make mozilla the number one browser out there. Most of them are religious fanatics, agressive, dishonest and bashers. Somebody has to fix this image, but I think people love to get attention by bashing Microsoft.
Posted by: Daniel on July 2, 2004 09:11 PMWell, i don't know that it has a lot of relation to this blog post Daniel.
But what you say does have some significance for sure, treating people like ignorant fools and trying to force things on them never helped. I think i may have strayed pretty close to that myself on occasion.
But you know there are zealots on all sides.
As for linux it is great in many ways, is reliable, it's not so user friendly/easy to use if you don't have a good deal of knowledge regarding it though. Couldn't you be more reasonable and less reactionary regarding it?
Posted by: jasidog on July 3, 2004 12:07 AMDaniel: the essence of Asa's item is not about 'zealots' or 'Ms vs. OS' or 'Firefox vs Explorer, no, it's about questioning the motives and the arguments. Once again:
-- "Robert does his readers a disservice by hiding behind the (paraphrasing) "people don't like change and why change when the alternative isn't perfect" arguments."
Look for example at Scoble's latest comment where he says the following:
-- " Even sings rap songs about it. Contains potentially offensive language. *Not to me*, mind you, but some of my readers might not like hearing a profanity or two."
Or ways a long ago Scoble said this:
I keep pointing out that if we fixed the CSS and PNG issues, you still wouldn't be able to use those for years. Why? Cause consumers (and companies) really don't care about those issues and won't download a new version just cause you fixed one or two issues.
I think the best description of this behaviour is 'Belittling'.
Posted by: Arthur on July 3, 2004 06:57 AMhttp://www.javacoolsoftware.com/index.html
Spywareblaster is very good at locking down IE's insecurites though perhaps not all.
It's not a cleaner like spybot/adaware more aprevention tool.
Posted by: jasidog on July 5, 2004 11:25 AMDamn i meant to post the above in the "microsoft's fix fails to close hole?" Article where it had a bit more relevance, not this one.
Apologies.
On the car analogy with the bumper, SUVs are rated as trucks and have much less hardy bumpers than cars. So many people head out feeling safer, even though their SUV has a bumper held to a lower standard than passenger cars.
Posted by: John Beimler on July 9, 2004 08:51 AMLooks like it was Asa who made a disservice to us here, because as of today it is found that Firefox and Mozilla has a serious security problem. Scoble turned out to be correct after all.
Posted by: Daniel on July 9, 2004 10:18 AM