15 Sep 2005

We’re starting to see the first round of sites and pages breaking due to the CSS fixes we have made. We would like to ask your help in cleaning up existing CSS hacks in your pages for IE7. It is has been our policy since IE6 that under quirks doctype we will not make any behavioral changes so that existing pages will continue to render unmodified, but under the strict doctype we want to change behavior to be as compliant as possible with the web standards. For IE7, we introduced new CSS functionality...

The IE October 2005 security updates are now available! This group of security updates is now available via Windows Update . Alternatively, you can receive this and all other Microsoft updates available via the new Microsoft Update . I would encourage you to upgrade to Microsoft Update if you haven’t already. Information about the IE Security update can be found at: MS05-052 – Cumulative Security Update for Internet Explorer (KB# 896688) This security update package contains fixes for the following...

We are currently working on the icon for feeds and have some designs to share. It’s orange. It’s rectangular. Check it out on the RSS blog . - Jane

Tony and Rob have just wrapped up their keynote here in Kuala Lumpur, and I wanted to make sure that the resources they talked about are listed here both for the benefit of the conference attendees who wanted to get to them and to everyone else who couldn’t be here today. The talk spoke to how Microsoft’s Security Development Lifecycle (SDL) has influenced the development of IE 7. Specifically, and quite obviously if you’ve been reading this blog, IE 7 isn’t just about patching problems but about...

Tony Chor , Rob Franco , and myself are in Beijing today as we make our way to Kuala Lumpur for the Hack-In-The-Box conference . We have a great team over here in what we call the ATC (Advanced Technology Center). In the past 6 months they’ve gone from just starting to adding serious value to IE 7. The folks over here have already contributed to IE 7 by re-writing the select control which Chris Wilson alluded to in his post from the PDC . Other improvements that we’ll see come out of the ATC for...

Hello, I’m Marc Silbey, a Program Manager focused on IE security. I’m back from my honeymoon and I want to follow-up to Rob’s last post on IE7 Security by providing you with more detail on Protected Mode’s compatibility features and by telling you about a related workaround to a known issue in the first Community Technology Preview (CTP) build of Windows Vista. As Rob mentioned, Protected Mode helps to eliminate the silent install of malicious code through Windows Vista’s User Account Protection...

While Rob Franco and Chris Wilson were presenting and getting feedback at PDC, I spent most of my time in smaller discussions (for example, with Paul and Joe ) about the security work we’ve done in IE. The discussions reminded me that, before most of the team was working on IE7, before Rob posted about our overall approach to IE7 security, we heard three things about IE and security over and over: "take it out of the operating system (or integrate it less), get rid of ActiveX, and rewrite IE to be...

The developer community has asked for a long time: Where is the free developer toolbar for IE? We recognized the popularity of free IE tools like Fiddler and we listened to your feedback. I am glad to announce the next addition to our developer tool support: The IE dev toolbar. This tool will help developers to explore their HTML documents and understand everything about it. With the IE Dev Toolbar you have several features at your fingertips to go deep into existing pages or pages that you are...

I realized as I read through the comments to my last blog post that I forgot to mention one important item that was in my presentation. We have fixed the DOCTYPE switch so it will skip an XML prolog, so that valid XHTML can be handled in strict compliance mode rather than quirks mode. I’ve also been reading comments for some time in the IEBlog asking for support for the “application/xml+xhtml” MIME type in IE. I should say that IE7 will not add support for this MIME type – we will, of course,...