Gold'en Rant : Firefox security slipping - come on guys

Nothing annoys me more than a software IT product which starts off with good ideals and product features, but which slips by the wayside in these regards as time marches on.

I'm sad to report that Firefox, which was released to the public as Firebird in 2003, and underwent a name change to Firefox in February, 2004, now falls into this category.

Last October, Silicon.com identified a total of 30 security flaws with Firefox which remained unpatched. Since then, other flaws have appeared, whilst only a handful have been patched.

A classic example of one flaw is the option to re-open a closed window (ctrl-shift-t) can not only by-pass HTTPS protection, but also keeps the history intact, allowing the back button to be used.

Just perfect for using shared computers at college or in an Internet cafe, he said sarcastically.

My thanks to ITProportal.com IT guru Désiré Athow for pointing out the ctrl-shift-t flaw, which he says allows windows to be re-opened on the Egg and Barclays e-banking portals.

I suspect the real problem with Firefox is that it's open source, which is the very reason why it's used by around 24 per cent of the world's Web surfers.

It can be patched, but things are moving slowly, it seems, on this front at Mozilla HQ.

Perhaps there's a real need for a commercial company like Sourcefire, which updated and reworked Snort into a secure and highly useful package?

Someone, somewhere, must be capable of doing this for Firefox - please?