December 28, 2024
IE8 is One of the Safest Browsers, Flash Makes Them All Vulnerable

IE8 is One of the Safest Browsers, Flash Makes Them All Vulnerable

Posted March 1, 2010 at 7:27pm by iClarified
Charlie Miller, winner of the Pwn2Own contest for the past two years, offers his thoughts on the most secure operating system and browser during an interview with oneitsecurity.

Pwn2Own 2010 will be held for three days starting on March 24th as part of the CansecWest Conference.

Miller says told oneitsecurity that Windows 7 is actually slightly harder to hack then Snow Leopard "because it has full ASLR (address space layout randomization) and a smaller attack surface (for example, no Java or Flash by default). Windows used to be much harder because it had full ASLR and DEP (data execution prevention). But recently, a talk at Black Hat DC showed how to get around these protections in a browser in Windows."


When asked if Linux was excluded from the competition because it was more difficult, Miller said, "No, Linux is no harder, in fact probably easier, although some of this is dependent on the particular flavor of Linux you’re talking about. The organizers don’t choose to use Linux because not that many people use it on the desktop. The other thing is, the vulnerabilities are in the browsers, and mostly, the same browsers that run on Linux, run on Windows."

Interestingly when asked what the safest operating system and browser combination is, Miller said, "That’s a good question. Chrome or IE8 on Windows 7 with no Flash installed. There probably isn’t enough difference between the browsers to get worked up about. The main thing is not to install Flash!"

Read More [via CrunchGear]


IE8 is One of the Safest Browsers, Flash Makes Them All Vulnerable


Add Comment
Would you like to be notified when someone replies or adds a new comment?
Yes (All Threads)
Yes (This Thread Only)
No
iClarified Icon
Notifications
Would you like to be notified when we post a new Apple news article or tutorial?
Yes
No
Comments (5)
You must login or register to add a comment...
fenrry
fenrry - March 1, 2010 at 9:54pm
fancy...wonder where is the statement about...oh wait he just said that OsKitty is less secure than Win....ROFL...i'm getting blind this days, so where are the fanboys now?
anon
anon - March 1, 2010 at 9:19pm
What a load of crap... I suppose we should turn off images next and then boycott PHP... I like many other people make a living off programming Flash content. I think its a fantastic platform and should be praised for its innovation.It's a shame to see so many people turn their backs on it when it has been filling the gap for years and even now there are so many things that Flash can do that simply isn't possible with, Java and HTML5.
RG
RG - March 1, 2010 at 11:43pm
being a nice piece of software to program on its not enough. Flash has proven to be extremely insecure, if they continue to foresee these problem, or to neglet it, they will eventually disappear. Flash is so widespread in use right now, its exposure its becoming its tumb, if they do not correct course soon, somethingelse will come to charge and put them away. Being nice its no excuse for being insecure !
John
John - March 1, 2010 at 8:04pm
Can html5 provide all functions of flash but stay secure?
Siddharth
Siddharth - March 2, 2010 at 12:42am
HTML 5 is relatively new. Although it is backed by heavy-weights like Apple and Google, only future will tell if its capable of being an alternative to flash. But flash wins hands down. Period!
Recent. Read the latest Apple News.
RECENT
Tutorials. Help is here.
TUTORIALS
Where to Download macOS Sequoia
Where to Download macOS Ventura
AppleTV Firmware Download Locations
Where To Download iPad Firmware Files From
Where To Download iPhone Firmware Files From
Deals. Save on Apple devices and accessories.
DEALS