I don't know if this has been covered before but here is my idea.

Someone was telling me that IE was a security risk just having it installed on your computer, even if you are not using it. I don't really know if that is true but it sounds logical anyway.

Since I have been using Firefox like many here have been. I occurred to me to just block IE from the internet with my firewall until I need it for windows update or something else. Then block it again when I am done. That way it is not a security risk just sitting on my computer all the time.

Any thoughts?

Right, but that of course implies you would have to set Wind-ows Updates to notify when there is an update. If you left it on automatic, it wouldn't get through, and you probably wouldn't know you have an update ready.

Edit: In other words, I would set the firewall to notify me every time IE wanted to call out ot the internet. I would be asking how could I set the firewall so that IE was not pernmitted to receive without permission.

That's what I do. I'm using ZA as my firewall and IE has access to nothing. I allow internet access for Windows updates and then deny access.

I have updates disabled in processes. I check manually every once in a while.

I'm with Steve, I check windows update manually on a regular basis. I have auto updates disabled in services as well.

But you have a good point Donn. Now that I think about,it I could just set my firewall to ask each time. That would be even easier than totally blocking it. I have EZ armor from CA, so all I would have to do is go into program control and set IE to "?".

How easy it would be for you would depend on what firewall you have. But I'm sure you could do the same. You should be able to just go in to your firewall and remove IE from your list of programs, and then it would start asking again like it was a new program.

I have IE blocked with my firewall and download the whole versions of updates with Netscape, so it is very rare that I have any use for IE at all...

Just for the novices amounngst us, what is the risk with IE if you have all the updates?

Are the other browsers like firefox freeware?

Can you run them together on the same system?

Firefox is:

1) Faster than IE
2) Includes a pop-up blocker
3) Is free
4) Is less likely to be affected by malware than IE. ie it's safer
5) It can be downloaded here (http://www.mozilla.org)

I read that someone at MS recently suggested that people look into alternate browsers because IE was so riddled with holes... It is safer patched, but you never know when some hacker will discover the next hole... I would not run it as a primary browser, except at work where I don't have a choice.... :p

You are right Budfred, if you go to http://www.microsoft.com/downloads/ (http://www.microsoft.com/downloads/search.aspx?displaylang=en) and dowload the pathes manualy instead of window update, you would not have to use IE at all.


Look at this. It is a bit old, but still holds true.


http://www.internetnews.com/security/article.php/3374931

Some excerpts from the article.

The U.S. government's Computer Emergency Readiness Team (US-CERT) is warning Web surfers to stop using Microsoft's Internet Explorer (IE) browser.

On the heels of last week's sophisticated malware attack that targeted a known IE flaw, US-CERT updated an earlier advisory to recommend the use of alternative browsers because of "significant vulnerabilities" in technologies embedded in IE.

"There are a number of significant vulnerabilities in technologies relating to the IE domain/zone security model, the DHTML object model, MIME-type determination, and ActiveX. It is possible to reduce exposure to these vulnerabilities by using a different Web browser, especially when browsing untrusted sites," US-CERT noted in a vulnerability note.

On discussion lists and message boards, security researchers have spent a lot of time beating the "Dump IE" drum, and the US-CERT notice is sure to lend credibility to the movement away from the world's most popular browser.

Just my 2 cents on other browsers.
I changed to firefox due to the reccomendation of a few of the people here on the forums.
I now find that I use it 95% of the time over ie.
Tab browsing alone makes it worthwhile.
Pop-up stopper works as well as anything I use on ie.
Download manager is also a nice little extra to see what and where things are going.
It is not as fast as ie, some people say it is, I have not found that to be the case.
Security is supposed to better but I can't tell because my fully patched ie never has had a problem.
All in all something that's worth at least trying.
The best of course is that it is free.
Mark:)
By the way thru extensions you can find all the little things you like about ie [including a spell checker:) ] . The only thing I have not found that works well is sound for mouse clicks.

Mark, I would say overall Firefox is faster. Pictures are sometimes slower to load. But that's about it for me anyway. But even with some minor inconviniences, I feel a lot safer with a browser that spends most of it's time being improved instead of being patched for security holes.

I would like to note that the reason you have not had any problems with IE is most likely because you have other good protection like spywaeblaster, host files and many other programs designed to protect IE. You are probably careful where you go on the internet as well.

Even with all that considered, the general concenses throughout the security community is that firefox or another alternative browser is much safer than IE.

Every forum I go to has the same recommendatons, even the ones that are not pc related say the same thing "dump IE".

I'm on your side:)
I love firefox

Sorry Mark, I wasn't barking at you, I just wanted anyone reading this to understand. :)

Mark, I always thought the hokey pokey was what it's all about! :confused: :D lol

gav:
Just for the novices amounngst us, what is the risk with IE if you have all the updates?
Gav,
The risk is greater with IE in that when you have IE compromised it allows entry into all of Windows due to the integration of IE...IE is Windows. IE has Active-X which allows downloads to occur without action on your part without any warning.
Alternate browsers are different in the extent that they expose your PC. If they get compromised they might leak some info but not expose the entire computer and it's data and settings to the offender.
No browser is immune to being attacked, so still surf the Web with common sense.
You can have multiple browsers on a PC, you just pick one as the primary browser. You can click shortcuts to open a different browser any time you wish.
Some browsers are freeware, some are paid, you have choices.