Click to run an ActiveX control on this webpage



May 31st, 2006 by Kat Kingsley-Hughes

It seems to me that Microsoft is always very good at covering their own backs but not so good when it comes to protecting the user.  How many times do you see a Windows Genuine Advantage update come in that's out of step with Windows Updates (even when there's a serious vulnerability about)?  Quite often, I find.

I feel the same way about the changes that Microsoft made to Internet Explorer is response to the patent dispute between themselves and Eolas Technologies which basically meant that you have to click to run certain kinds of ActiveX.

Click to run an ActiveX control on this webpage

I have a question though - since Microsoft decided that pestering the user with a dialog box was a good way to go in this case, why not add a second option to the dialog box - a Cancel option.  That way users would get the option whether or not to run the ActiveX control.  It might make people think a bit more about security issues surrounding ActiveX.

Additionally, as far as most users were concerned, Microsoft introduced this change silently.  One day users just start seeing this box appear.  Think usability!  How about some help people?  We're already telling people to be on the lookout for suspect dialog boxes and you introduce one without making it clear what it's about.  Sloppy.

Read more ...

This entry was posted on Wednesday, May 31st, 2006 at 12:40 pm and is filed under Browsers, Software. Both comments and pings are currently closed.

Comments are closed.

%d bloggers like this: