Templot Club Archive 2007-2020
|
|||
| author | remove search highlighting | ||
|---|---|---|---|
|
posted: 8 Jun 2009 12:40 from: Martin Wynne
click the date to link to this post click member name to view archived images |
This is a serious warning from a respected source. If you are using Firefox you may want to check Tools > Add-ons to see if Microsoft have installed this extension without your permission. Please be aware that modifying the Windows Registry is not for the faint-hearted, and could seriously damage your system if you get it wrong. In a recent update of the .NET framework Microsoft silently installs an extension to your Firefox browser if it is found on your system. This extension enables websites you visit with Firefox to silently install software on your computer, thus injecting the most serious flaw of Internet Explorer into Firefox. regards, Martin. |
||
|
posted: 8 Jun 2009 13:28 from: Paul Boyd
click the date to link to this post click member name to view archived images |
In a recent update of the .NET framework Microsoft silently installs an extension to your Firefox browser if it is found on your system. This extension enables websites you visit with Firefox to silently install software on your computer, thus injecting the most serious flaw of Internet Explorer into Firefox.That must be verging on illegality, surely? If Microsoft want to make their own software buggy and insecure, that's fine. But to do the same to a third party's competing program, and then make it very difficult to remove is very, very wrong. How long will it be before dodgy websites take advantage of that, then people will be blaming Mozilla instead of Microsoft. I'm not a happy bunny  Anyway, I've now removed it, but that process is not for the non-computer literate. |
||
|
posted: 8 Jun 2009 14:17 from: John Shelley
click the date to link to this post click member name to view archived images |
Paul Boyd wrote: I don't appear to have that Microsoft extension, but do have a "Java Quick Starter" that has the désinstaller button greyed out (I've got the french language version installed - don't ask why). It isn't that is it? I hope not as I've had a look at the instructions and although I consider myself competent I don't like the look of what has to be done.In a recent update of the .NET framework Microsoft silently installs an extension to your Firefox browser if it is found on your system. This extension enables websites you visit with Firefox to silently install software on your computer, thus injecting the most serious flaw of Internet Explorer into Firefox.That must be verging on illegality, surely? If Microsoft want to make their own software buggy and insecure, that's fine. But to do the same to a third party's competing program, and then make it very difficult to remove is very, very wrong. How long will it be before dodgy websites take advantage of that, then people will be blaming Mozilla instead of Microsoft. I'm not a happy bunny Cheers for now John from St Ciers 33820, France |
||
|
posted: 8 Jun 2009 15:06 from: Bruce Wilson
click the date to link to this post click member name to view archived images |
No need to mess with Windows registry. The one click can be useful on occasion and as it is there is the option to disable it in FF. Click on Tools and then Add-ons and highlight the NETframework extension and click on Disable. Second MS has released an update to the NETframework extension in FF that allows removal http://tinyurl.com/cbx4me Bruce Wilson Barrie, ON |
||
|
posted: 8 Jun 2009 15:59 from: Phil O
click the date to link to this post click member name to view archived images |
Hi Martin Thanks for the info, I have now removed the bill gates infiltration, but it is a pain and certainly not for the faint hearted. Cheers Phil  |
||
|
posted: 8 Jun 2009 16:04 from: Jim Guthrie
click the date to link to this post click member name to view archived images |
Martin Wynne wrote: This is a serious warning from a respected source.Interestingly enough, my Add-on entry had an option to disable the attachment which gave the indication of having worked when I went through the disabling procedure. But I opted to remove the add-on in any case.  Jim. |
||
|
posted: 8 Jun 2009 16:40 from: Martin Wynne
click the date to link to this post click member name to view archived images |
Paul Boyd wrote:If Microsoft want to make their own software buggy and insecure, that's fine. But to do the same to a third party's competing program, and then make it very difficult to remove is very, very wrong. How long will it be before dodgy websites take advantage of that, then people will be blaming Mozilla instead of Microsoft. I'm not a happy bunnyHi Paul, There's been a lot of froth on the web about this, and some discussion about how serious it is. The argument goes that it makes Firefox no more vulnerable that fully patched IE, and the functionality gained can be useful. But lots of things are useful -- that doesn't mean I want them forced on me without my knowledge or a chance to assess the risk. In response to the fuss, Microsoft have an update download which re-enables the Uninstall button. See: Update to .NET Framework 3.5 SP1 But that means trusting Microsoft to clean up their own mess, and the evidence seems to be that it doesn't actually remove the files or the vulnerability they represent, it just switches them off. Which is why I left the link to the full removal procedure. Of course, it's quite likely that Windows Update will simply re-install this thing next time round. Check your Add-ons list after using Update! regards, Martin. |
||
|
posted: 8 Jun 2009 19:18 from: John Lewis
click the date to link to this post click member name to view archived images |
Like John from St Ciers 33820, France, I do not seem to have any reference to NET in my Firefox Tools/Add-ons, only a "Java Quick Starter", which I assume is not the Microsoft modification in question. In practice I rarely use Firefox, my normal browser is Opera. I have Windows XP Professional, SP3. |
||
|
posted: 8 Jun 2009 21:15 from: IAK
click the date to link to this post click member name to view archived images |
John Lewis wrote: Like John from St Ciers 33820, France, I do not seem to have any reference to NET in my Firefox Tools/Add-ons, only a "Java Quick Starter", which I assume is not the Microsoft modification in question.Same here with my beastie.... Just means I have an office full of PC's which need checking in the morning now  |
||
|
posted: 8 Jun 2009 21:28 from: Brian Lewis
click the date to link to this post click member name to view archived images |
Thank you for the warning Martin. What concerns me is, what is to stop MS adding it again at some time in the future? Things seem to be added to my computers almost nightly. Do I have to check every day? Regards Brian Lewis |
||
|
posted: 8 Jun 2009 21:42 from: Martin Wynne
click the date to link to this post click member name to view archived images |
More information here: http://en.wikipedia.org/wiki/ClickOnce Scroll down to "Firefox extensions". Martin. |
||
| Please read this important note about copyright: Unless stated otherwise, all the files submitted to this web site are copyright and the property of the respective contributor. You are welcome to use them for your own personal non-commercial purposes, and in your messages on this web site. If you want to publish any of this material elsewhere or use it commercially, you must first obtain the owner's permission to do so. |