Originally posted here by brokencrow
No, I meant what I said. Internet Explorer, poorly configured or not.



All software has its vulnerabilities, including Firefox. It's the vulnerabilities it doesn't have, ActiveX and embedding, that make it much safer. Of course, you can download the ActiveX plug-in for Firefox, but I don't reco' it. And there's no doing away with Explorer's kernel status. Hack IE and you can get into the kernel. Hack Firefox and where are you?

Just curious, anybody have a browser hijack for Firefox yet?
If you're concerned about ActiveX vulnerabilities, why not just remove the ability to run ActiveX controls altogether?

Start -> Run -> MMC -> Add the Local Group Policy Editor -> Computer Configuration -> Administrative Templates -> Windows Components -> Internet Explorer -> Internet Control Page -> Security Page -> Lockdown Local Machine Zone. (This does assume you're not running as Admin or else this would hardly be effective. Since running as Admin is foolish, I think this is a safe assumption.)

As to "embedding", I don't know what it is. Could you please elaborate?

- X