IEInternals

A look at Internet Explorer from the inside out. @EricLaw left Microsoft in 2012, but was named an IE MVP in '13 & an IE userAgent (http://useragents.ie) in '14

  • IEInternals

    There’s never magic, but plenty of butterfly effects

    • 0 Comments
    I’ve always enjoyed magic shows, but I’ve never attempted to understand how the tricks are performed, since that would take all of the fun out of them. In contrast, if I see a web browser demonstrating seemingly magical behavior or misbehavior...
  • IEInternals

    Unicode in URL changes for IE11

    • 3 Comments
    I wrote a bit about Internet Explorer’s International Settings back in July of 2012. Internet Explorer 10 and 11 quietly brought some changes: In IE10, the Use UTF-8 for mailto links option was removed . In IE11, the misleadingly-named...
  • IEInternals

    YouTube and Save Video As

    • 0 Comments
    An amusing April Fool’s satire I ran across yesterday reminded me of a Connect bug that was reported back in the IE9 Beta. The HTML <video> control’s default context menu includes a “Save Video As…” menu option that...
  • IEInternals

    Consent and Browser Refreshes

    • 11 Comments
    Modern browser APIs like the GeoLocation API are designed to have an asynchronous consent experience, whereby the API simply will not undertake a privileged action until the user consents. Unfortunately, many browser features like popup windows and ActiveX...
  • IEInternals

    The JVM Install Prompt

    • 2 Comments
    Many years ago, Microsoft developed an implementation of a Java Virtual Machine to run Java content. Internet Explorer 5 included code that would download and install the JVM (if needed) when a user encountered Java content on the web. After some time...
  • IEInternals

    HTTP/HTTPS Port-Blocking in WinINET

    • 0 Comments
    Internet Explorer (actually, WinINET, the network stack beneath IE) prohibits use of certain ports for HTTP(S) connections. The intent of this blocking is to prevent Cross Service/Protocol Request Forgery attacks. For instance, an attacker could use a...
  • IEInternals

    URL Components in the DOM

    • 2 Comments
    The IE team has been working our way through the remaining issues reported from internal and external testing of the IE9 Release Candidate. In the course of investigating one recent internal-site compatibility bug, I ran across an interesting interoperability...
  • IEInternals

    One Billion...

    • 0 Comments
    SmartScreen has blocked one billion malware downloads . Pretty amazing.
  • IEInternals

    Windows Server as a Workstation

    • 4 Comments
    Back in the Windows 2003 timeframe, Microsoft had a problem. The security press of the time liked to put out charts showing which operating systems had the most vulnerabilities. Windows 2000 wasn’t looking so hot, owing to the fact that Windows...
  • IEInternals

    IE9 Compatibility–HttpOpenRequest and lplpszAcceptTypes

    • 2 Comments
    The WinINET API allows the caller to specify the accepted MIME types for a given HTTP request by passing a null-terminated array of null-terminated strings using the lplpszAcceptTypes parameter. When calling the HttpOpenRequest API, applications must...
  • IEInternals

    Notes on Proxy AutoConfiguration Scripts

    • 0 Comments
    I had someone ask me for help writing a Proxy AutoConfiguration script today. PAC files are basically simple JavaScript files that expose one function, FindProxyForURL(url, host) . The function returns a string containing a list of one or more proxies...
  • IEInternals

    Why do Tab buttons resize temporarily?

    • 6 Comments
    Have you ever noticed that when you close a tab in IE using the tab’s red-X button (or middle-click): …the tab to the left gets wider (or narrower)? If you then move your mouse, then the tab button size goes back to normal: ...
  • IEInternals

    Enhanced Mitigation Experience Toolkit Update

    • 3 Comments
    Microsoft’s Security Research and Defense team has released an updated version of their Enhanced Mitigation Experience Toolkit (EMET), a tool that allows the application of enhanced security mitigations around the application of your choice. ...
  • IEInternals

    Managed Code Browser Extensions

    • 7 Comments
    I love the .NET Framework. I’ve been programming in C# since 2001, I spent much of my free time for a decade building Fiddler on .NET, and I now code in C# for a living. .NET provides a fantastic, highly-productive platform suitable for building...
  • IEInternals

    IE9 RC Now Available

    • 9 Comments
    The Release Candidate of Internet Explorer 9 is now available . I’ll be posting my IE9 RC Minor Changes list sometime in the next week—we’ve made a ton of improvements since beta, and I’m excited to talk about all of them. For...
  • IEInternals

    Retiring IE6...

    • 6 Comments
    Often, folks ask us why we continue to support IE6. The short answer is that because we've committed to doing so . But more importantly, even if we dropped support, most people who want to use IE6 would still use it anyway, just without the benefit of...
  • IEInternals

    IE and the Security Development Lifecycle

    • 0 Comments
    Microsoft's Security Development Lifecycle describes how we engineer security into our products. Earlier this year, Security Program Manager Mark Shlimovich wrote a detailed whitepaper about how SDL was applied to IE8, providing "behind the scenes" insights...
  • IEInternals

    Mind Your Parameters

    • 0 Comments
    A recent blog post reminded me that I should blog about a bad pattern we saw a few months back while trying to fix some application compatibility bugs with IE10. It turns out that a lot of applications that want to invoke a webpage call ShellExecute without...
  • IEInternals

    Blog Roll

    • 2 Comments
    These days, I struggle to find time to keep up with all of the tech news, but there are a few streams I make a special effort to stay on top of. Ex-Internet Explorer Dave Risney posts items of interest about URIs, web standards, FiddlerCore and myriad...
  • IEInternals

    Cross-Browser Interop and the HTML5 Canvas

    • 0 Comments
    Technical Evangelist Giorgio Sardo just published a great post about HTML5 Canvas, responding to some concerns about bugs in the IE9 Beta. The post also takes a quick look at cross-browser interop for the Canvas object. It’s definitely worth...
  • IEInternals

    The Mystery of the Forgetful Browser Settings

    • 0 Comments
    A friend recently wrote to me, alarmed that the SmartScreen Filter feature was constantly turning off on his laptop with IE8. Despite manually re-enabling the feature using the Safety menu multiple times per hour, it was mysteriously and repeatedly turned...
  • IEInternals

    Q&A: Rendering Mode for Web Browser Controls (WebOCs)

    • 1 Comments
    Q: Eric, you mentioned that the IE8 Web Browser Control, hosted in Forms / WPF, runs in IE7 emulation mode by default. Is there a way to turn the emulation mode off and have the control work in "real" IE8 mode? A: Yes. This is controlled by a feature...
  • IEInternals

    Internet Explorer 11 and Perfect-Forward-Secrecy

    • 4 Comments
    In case you missed it, the recent Windows 8.1 Update update adds four new ciphersuites (including two supported by Chrome32) and changes the ciphersuite order to prefer algorithms that offer Perfect-Forward-Secrecy. You can read more about this update...
  • IEInternals

    Same Origin Policy Part 0: Origins

    • 0 Comments
    Recently, someone asked a pretty simple question: “ Why doesn’t IE consider the port when evaluating Same Origin Policy? ” and I realized that my Same-Origin-Policy series lacks an in-depth look at the concepts surrounding origins ....
  • IEInternals

    Networking Improvements in IE10 and Windows 8

    • 5 Comments
    Internet Explorer 10’s networking code builds upon the performance improvements in IE9 ( caching , overall networking ) to help ensure that IE10 loads pages as quickly as possible. In IE10, we identified a few key areas for improvement based on...
Page 7 of 8 (199 items) «45678