HelpWithWindows | Windows Forum | RoseCitySoftware




HelpWithWindows - Home > Review: Internet Explorer 7 Beta 2

• April 28, 2006 •

Review: Internet Explorer 7 Beta 2 (Page 2)

RSS support

Real Simple Syndication (RSS) is an XML data format that is used to publish Web content to which people can subscribe. Many Web sites (such as The New York Times, CNN and News.com) now have RSS feeds, that lets people subscribe to their content. Most people these days use what is called a news aggregator to subscribe to RSS feeds. These aggregators come in three basic types: standalone news aggregator clients, email plug-ins, and Web browser plug-ins.

Microsoft decided to extend Internet Explorer's functionality, and make it a RSS compatible reader. IE 7 features a "feed discovery" button on the toolbar that lights up red (although this is easy to miss) when you navigate to a Web site that includes an RSS-based subscription (Figure). There is an option under Internet Options > Content > Feeds which also lets you assign a sound effect to the discovery of feeds. You can click the button to see the RSS feed rendered right in Internet Explorer (Figure). At the top of the feed, you'll see a small explanation of the RSS Feed, and a link Subscribe to this feed, which adds the feed to Internet Explorer's Favorites Center.

Using the Favorites Center, you can select a number of advanced options for a feed by selecting Properties when you right-click a subscribed feed. You can set for example how often the subscribed feed is updated (Figure), and set Archive options (the number of items to keep). When new content is available, the feed in the Favorites Center will turn bold.

Delete Browsing History

Another nice addition is the Delete Browsing History menu item on the Tools menu of Internet Explorer. This lets you delete your entire Web browsing history (Temporary Internet Files, Cookies, History, Form data and Passwords) either individually, or just with a single click (Figure).

Security

Microsoft is finally moving forward again with Internet Explorer; it was needed! From a security standpoint, Internet Explorer has been a leading attack vector for malware for the last few years. It is clear from looking at IE7 that Microsoft is (finally) making a serious effort to remove the risk factor from Internet Explorer, and make it save for everyday use.

Phishing Filter

A new feature in IE7 is a Phishing Filter. Phishing (I.T. slang for fishing) is usually defined as the act of sending an e-mail to a user falsely claiming to be a legitimate business (for example a bank or Internet Service Provider) in an attempt to scam the user into surrendering private information that will be used for identity theft. The e-mail directs the user to visit a Web site where they are asked to update personal information, such as credit card-, social security-, and bank account-numbers. These Web sites are bogus and set up only to steal the user's information.

Microsoft has enlisted the help of Cyota, MarkMonitor, and Internet Identity, to help IE7 identify websites designed to trick people into disclosing personal data to identity thieves. Microsoft previously worked only with WholeSecurity, which was recently acquired by Symantec.

If you visit a Web site that meets certain criteria, the Phishing Filter will trigger a yellow warning (and the address bar turns yellow too) to warn you that the site looks suspicious and might be a Phishing site updated (Figure). When you click on the warning, you get a short explanation, and are offered the opportunity to report the Web site as being suspicious or not (Figure). If you visit a Web site that is known to be malicious (to be labeled as such, Web sites are verified by a human to be a Phishing site), you get a red warning. You are given the option to visit that site anyway, or report the site when you suspect it is not a Phishing site.

I think adding the Phishing Filter is a very good move on Microsoft's part, given the fact that identity theft starts to overtake viruses & worms as the #1 threat to Internet users, and a lot of novice computer users fall victim to these Phishing sites on a daily basis.

International Domain Name Spoofing Protection

A new vector of attack that is emerging is the spoofing of domain names by using different character sets. IE7 includes technology to detect these spoofing techniques so that malicious Web sites that try to use this technique to fool users will fail.

Fix My Settings

A new security setting in IE7 is called the Fix My Settings feature. You will see this feature if you set your security settings to an insecure state (from the Internet or Restricted zones). When you choose an insecure setting two things will happen (Figure):

  • An information bar will appear at the top of the browser with 'Fix Settings for Me' as the first menu option.
  • In place of your homepage, you will see a warning page on startup of IE.

From the information bar you can choose to have IE fix the settings to a secure state, or open IE's Security Settings. IE will clearly mark which setting is causing the problem (Figure).

Microsoft's view here is that when you're browsing in the Internet or a Restricted zone, any settings that would allow arbitrary code to run on your computer without your consent could potentially put your computer at risk, and will be flagged.

I think this is a good feature to have, especially for the novice users. Power users are probably going to be annoyed by the constant warnings if they choose "unsafe" settings, but there should be a Group Policy to turn the warning off.

Other Security Enhancements

There are a number of other security enhancements in IE7 that will not be apparent, but they will none the less make IE7 more secure. So has Microsoft improved the security for ActiveX. ActiveX controls are now Opt-In by default, but even when you attempt to install an ActiveX control, if it's a malicious ActiveX, installation will fail. Another improvement is that IE7 will require all windows (even pop-up widows) to show an Address Bar, so you can more easily identify which site opened the pop-up window.

Availability

This beta version is now also available for Windows XP Professional x64 Edition, and Windows Server 2003, besides Windows XP Service Pack 2 (earlier beta's where only available on the latter OS).

System Requirements

Microsoft lists the following minimum system requirements your computer needs to run Internet Explorer 7 Beta 2:

  • Computer/Processor: Computer with a 233MHz processor or higher (Pentium processor recommended)
  • Memory: 64 MB of RAM minimum
  • Hard Disk space: Full install size: 12 MB
  • Display: Super VGA (800 x 600) or higher-resolution monitor with 256 colors

You can get more information on Microsoft's Internet Explorer 7 Web site, where you also find the download links. You should take a moment to read the release notes, it lists a number of issues that have been encountered so far.

Download

WARNING! All the usual warnings about "beta" software apply (including: Internet Explorer 7 Beta 2 should not be used on production systems in mission-critical environments).

Microsoft is providing free telephone support for this beta for North America, English speaking customers. The final version is expected by the end of this year.

Conclusions

Microsoft is finally moving forward again with Internet Explorer; it was needed! From a security standpoint, the addition of the Phishing Filter to the browser should be a huge step in making the Web a safer place for many people. The emergence of tabbed browsing on IE will also be greeted by many, while the improvements made to IE's printing engine will alleviate another problem faced by many IE users today.

Give your comments on this article.

           E-mail This Page




HelpWithWindows RoseCitySoftware

Software Products, Spotlight of the Week, Partners, RCS newsletter, Corporate Sales, List with us