Your opinion on the safest browser?

Discussion in 'other security issues & news' started by Metal425, Apr 5, 2009.

Thread Status:
Not open for further replies.
  1. gery

    gery Registered Member

    Joined:
    Mar 8, 2008
    Posts:
    2,142
    I know that you have heard about it but what is the opinion for FF. I like it .it is simple and safe i guess.
     
  2. Eice

    Eice Registered Member

    Joined:
    Jan 22, 2009
    Posts:
    1,413
    Like its other major competitors, it's a nice browser that will probably serve your needs quite well. It's just that it isn't really a contender when it comes to the question of "safest".
     
  3. Someone

    Someone Registered Member

    Joined:
    Jan 18, 2008
    Posts:
    1,106
    Firefox with NoScript should be very safe I think?
     
  4. BJStone

    BJStone Registered Member

    Joined:
    Oct 31, 2005
    Posts:
    139
    With or without extensions/add-ons?
     
  5. BJStone

    BJStone Registered Member

    Joined:
    Oct 31, 2005
    Posts:
    139
    So then what are the real contenders when it comes to the question of being "safest" ?
     
  6. BJStone

    BJStone Registered Member

    Joined:
    Oct 31, 2005
    Posts:
    139
    Which reason?
     
  7. ThunderZ

    ThunderZ Registered Member

    Joined:
    May 1, 2006
    Posts:
    2,459
    Location:
    North central Ohio, U.S.A.
    Bellgamin hit the nail on the head. :thumb:

    Not the most exciting or pretty by far. Far from being well known. But the question concerned secure\security.

    Text only is the way to go.
     
  8. Handries

    Handries Registered Member

    Joined:
    Jan 4, 2008
    Posts:
    75
    Location:
    Canada
    Opera is also my first choice. Right now I'm testing the new Opera 10 Alpha with Turbo, which is quite a bit faster than their previous versions.

    For my second choice I'll vote for Maxthon 2.5.2. even though it uses IE 8 as it's rendering engine, but has more security features which I like.
     
  9. Joeythedude

    Joeythedude Registered Member

    Joined:
    Apr 19, 2007
    Posts:
    519
    Is there much security risk in setting IE 8 as the default browser ?

    Does much known malware use the default browser setting when it tries to phone home ?
     
  10. Toby75

    Toby75 Registered Member

    Joined:
    Mar 10, 2006
    Posts:
    480
    Opera, IMO -- less popular than FF so it's less targeted.
     
  11. nomarjr3

    nomarjr3 Registered Member

    Joined:
    Jul 31, 2007
    Posts:
    502
    FF w/ NoScript, Adblock Plus, and WOT is as safe as a browser can get IMHO.

    Never had a security issue since installing those add-ons.:D

    100% highly recommended for FF users :thumb:
     
  12. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    Hi Guys!

    On this site can you see how secure your browser is,
    My current browser Safari BETA 4.0 for Windows got good results !-)

    http://www.useragentstring.com/

    SweX
     
  13. LoneWolf

    LoneWolf Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    3,685
    As did Opera here.......
     

    Attached Files:

  14. Arup

    Arup Guest

    Opera always gets U here, its one of the most secure and fastest patched browser there.
     
  15. Eice

    Eice Registered Member

    Joined:
    Jan 22, 2009
    Posts:
    1,413
    Sorry, but that's, er, kind of silly.

    That site just reports what your useragent string is telling it. It's got nothing to do with how secure your browser actually is.
     
  16. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    YES it tells you how secure your useragentstring is yea :rolleyes:
    And if you don't get the U then it's not secure!

    But calling it a "silly" site hmm don't know if it's that silly is it :doubt:

    However, if you know of a browser security tester site that is not "silly"
    then you can post it here, thank you.

    But this was the best i could do :-*

    SweX
     
  17. L815

    L815 Guest

    Any browser can be made safe. Might as well pick one you enjoy using.
    Some (like Opera & Chrome) take less work to make safe, when compared to some others (FF).

    As a side note, anyone using Chrome?
     
    Last edited by a moderator: Apr 11, 2009
  18. progress

    progress Guest

    According to this [page 40-41]:

    The total number of vulnerabilities affecting the following Web browsers 2008 [page 38]:

    So the safest browsers are: Safari, Opera, Chrome?! o_O
     
  19. Rmus

    Rmus Exploit Analyst

    Joined:
    Mar 16, 2005
    Posts:
    3,994
    Location:
    California
    Nothing more to say, really...

    Nonetheless, I'll add that I've tested every exploit site in the wild I've seen mentioned and have yet to find one that has compromised Opera. (Note that I said exploits in the wild, not vulnerabilities listed in surveys).

    Now, not all exploits are browser-specific. Those that target applications with plugins for the browser, for example. In these cases, it requires the user to configure the browser properly so that the exploit doesn't bypass the normal Download protection the browser has.

    ----
    rich
     
  20. Rmus

    Rmus Exploit Analyst

    Joined:
    Mar 16, 2005
    Posts:
    3,994
    Location:
    California
    The WinAntiVirus exploit has been called a browser exploit because the fake scan starts automatically, leading to the download of malware.

    Typically, the user is redirected from a legitimate website to the fake scan site, which has javascript code such as

    Code:
    script src='fileslist.js'
    script src='progressbar2.js'
    script src='common.js'
    These files load the images for the scan. If scripting is disabled in the browser, the files don't cache, and all the user sees is a blank page:

    winantivir-blank.gif

    If scripting is enabled, then the fake stuff starts:

    [​IMG]

    Whereupon, the user is confronted with alerts that the computer is worse than a rat's nest because "critical level threats" were not removed, so that this great product is needed to save the day:

    [​IMG]

    A brief Quiz:

    How does this product get downloaded?

    1) The browser does it automatically

    2) The user clicks to download.​

    For those that need to do some research on this, I'll give you some time and return later with the answer.

    ----
    rich
     
  21. Rmus

    Rmus Exploit Analyst

    Joined:
    Mar 16, 2005
    Posts:
    3,994
    Location:
    California
    I hope you agree that the user initiates the download.

    So, is WinAntiVirus2009 a browser exploit? Or a user error?

    Today's browsers allow you to configure site preferences. In Opera, first you disable Javascript Globally:

    opera-jsGlobPref.gif

    Then you enable javascript for your trusted sites - here, Wilders:

    opera-js1.gif

    This means that any site linked from Wilders will not have Javascript enabled. Here, I click on the link to the article in the post:

    opera-js2.gif

    So, the WinAntiVirus exploit would fail to initiate with this configuration.

    I think this is a great feature. You have to be sympathetic for certain people who might fall for this fake scan trick, if they have no real understanding about these things.

    Setting up scripting this way is not difficult to teach, and it certainly will avoid many of the exploits today that require scripting just to start!

    ----
    rich
     
  22. tlu

    tlu Guest

    These figures are rather bogus. Read my answer here.
     
  23. Eice

    Eice Registered Member

    Joined:
    Jan 22, 2009
    Posts:
    1,413
    With all due respect, the days where Mozilla can tout its security as a selling point over its competitors are long gone. The sooner it can wake up to this and focus on catching up, the better.
     
  24. demonon

    demonon Guest

    You still have not explained why you dont think firefox is a secure browser.
     
  25. Dogbiscuit

    Dogbiscuit Guest

    Maybe you should tell them this. ;)
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.