Sign in with
Sign up | Sign in
Your question
Closed

Mozilla's Firefox Patches Have Same Lifespan as a Mosquito

Last response: in News comments
Share
October 24, 2012 1:10:59 PM

I'll stick with Safari on OS X and if I want to cruse some porn I fire up my Linux laptop.
Score
-21
October 24, 2012 1:25:35 PM

john_4I'll stick with Safari on OS X and if I want to cruse some porn I fire up my Linux laptop.


Yes, because Safari is sooooooo awesome. Good one, iMoron.
Score
24
October 24, 2012 1:36:26 PM

Scientists should place their time into more productive findings, like how much time we, humans have to wait in a lifetime each time OS' loads up :-)
Score
-9
October 24, 2012 1:36:53 PM

I wouldn't wipe my a$$ with Safari.
Score
22
October 24, 2012 1:40:15 PM

john_4I'll stick with Safari on OS X and if I want to cruse some porn I fire up my Linux laptop.


LOL @ anyone who defends that "Mac OSX and Linux can't get infected" stuff.

BTW what was the point of this study? I think that if a patch can be released in 4 days, that's great and needs to be carried on. Well done, Mozilla.
Score
5
October 24, 2012 2:03:03 PM

Linux is quite secure.
Because retarded users dont use linux......
Score
11
October 24, 2012 2:10:30 PM

I don't think there was a need to mention that it had the lifespan of a mosquito.
Score
6
October 24, 2012 2:23:11 PM

Mosquitoes are one of the most prevalent forms of life on earth. Now if Mozilla could just proliferate like Mosquitoes they would have it made!
Score
-1
October 24, 2012 2:29:52 PM

I have no problems or even a concern about an expedited patch. Which is worst dragging your feet and allowing a 'long lifespan' of exploit or fixing it ASAP??!! Makes absolutely no sense to argue over this??

What are you suggesting to leave an exploit/security hole open longer like other browsers?? Come on.
Score
0
October 24, 2012 2:58:17 PM

The scientists failed to factor in mosquito spray when calculating the lifespan of the mosquito.
Score
3
October 24, 2012 3:01:20 PM

It could be a good thing ' if ' the patch fix thing.... (sooner is better)

What the patch in this study refers to?
Score
0
October 24, 2012 3:06:36 PM

mayankleoboy1Linux is quite secure.Because retarded users dont use linux......

It's also quite secure because it has tens of thousands of developers examining the source code and patching bugs, and have been for decades.

Nothing can protect a system from a stupid user that grants a malicious process root privileges, or from bad software that has root and can be exploited. Linux just has a sturdier foundation to start from than other operating systems.
Score
3
October 24, 2012 3:29:45 PM

The Mac haters are strong at Tom's. Hate on Mac haters.
Score
-7
October 24, 2012 3:32:19 PM

JaquithI have no problems or even a concern about an expedited patch. Which is worst dragging your feet and allowing a 'long lifespan' of exploit or fixing it ASAP??!! Makes absolutely no sense to argue over this?? What are you suggesting to leave an exploit/security hole open longer like other browsers?? Come on.

First of all, nobody is saying this is a bad thing. They're saying it's good, because patch turn-around time is lower.

Second, the "fix it now at all costs" strategy is the worst possible way bugs can be addressed. Trying to fix something before it's fully understood often does more harm than good, introducing other bugs or addressing symptoms and hiding the real problem.

For example, I ran into a situation much like this yesterday. A critical bug was discovered in a piece of software I work on. We got together immediately, discussed what was happening and decided on a plan of attack. Within 30 minutes, we had a fix for the bug. However, we spent the next couple hours validating and verifying our assumptions.

The risk of keeping a well understood problem around a little while longer is very small. The risk of deploying something you don't understand is very large.
Score
4
October 24, 2012 3:39:45 PM

Think of a 'patch as a 'recall'.
Now imagine ANY other industry had that many product recalls :-)

It is quite amazing what Software companies are getting away with.
Score
3
October 24, 2012 4:53:44 PM

freggoThink of a 'patch as a 'recall'.Now imagine ANY other industry had that many product recalls :-)It is quite amazing what Software companies are getting away with.


but unlike recalls, software patches can be done proactively.. they find the error and want to fix it...
auto companies do them reactively seeing the cost benefit of doing recall over lawsuits and fines
Score
1
October 24, 2012 5:34:39 PM

freggoThink of a 'patch as a 'recall'.Now imagine ANY other industry had that many product recalls :-)It is quite amazing what Software companies are getting away with.

I'm sorry but this is a poor analogy. For instance, does patching your software give you the same headaches a car recall would? Not to mention these are two completely different universes with completely different problems and challenges.
Score
-1
October 24, 2012 7:25:17 PM

You can't compare a patch to a car recall - at best, you can compare it to a modification on how the car is assembled. It wasn't that long ago that, say, the Peugeot 205's manufacturing process was tweaked so often that it is now considered that no more than 5 cars of the series were exactly identical - here, a different way to fold the iron sheet, there a slightly different bumper bolt, or there a different diameter pipe for the fuel line... Once a year maybe, a more major overhaul would be made to formally integrate those tweaks and add some that the engineers came up with, or a new engine block, or whatever.
The end result was that the car gradually became better and better; the first ones were good, and perfectly usable cars, but the latter ones had slightly better handling and were a bit safer, had better mileage, and when older, would have less rattling pieces all around. It was pretty much the same car at the beginning and at the end, with the same qualities and failings - but the former were improved and the latter smoothed.
Japanese car makers were very, very good at it - US car makers much less so, preferring to get a completely new model out once every couple of years.
Now, compare Firefox or Chrome to Internet Explorer: IE typically is slightly above the competition when it gets out, is caught up with in a matter of weeks, and is left in the dust 6 months later - and you have to wait for an extra 18 months to get the new one.
Having taken part to the IE9 beta program (bug reports etc.) I can tell you that Microsoft's turnaround on fixes, even on software which isn't out yet, is the crappiest of all browser makers out there: it took from 2 to 7 months for a bug report, complete with reproduction steps, to be acknowledged, and it was 50/50 between a WONTFIX resolution and a fix.
Compared to that, Mozilla is a dream to work with.
Score
0
October 24, 2012 9:47:11 PM

freggoThink of a 'patch as a 'recall'.Now imagine ANY other industry had that many product recalls :-)It is quite amazing what Software companies are getting away with.

True.

But it shouldn't apply here, given that Firefox is free.
Score
0
October 28, 2012 2:40:08 PM

freggoThink of a 'patch as a 'recall'.Now imagine ANY other industry had that many product recalls :-)It is quite amazing what Software companies are getting away with.


This is a great analogy. It's about time that we require certification to practice software development professionally. It would render software production companies liable for the software they produce - despite ridiculous EULAs and disclaimers which rarely hold up in court as it is - in addition to injecting a much-needed shot of ethics into an industry that is very sorely lacking.


All that said, Firefox needs to gather its senses and come up with production plans that don't require a hundred band-aid stopgap fixes. They are like a kid doing paper mache - adding more code doesn't translate to an improved product.
Score
0
!