With Monday'sof the Mozilla Foundation's patches for significant new security holes that could let attackers install malicious code or steal personal data, Firefox partisans are finally acknowledging that the core sales pitch for their browser may be vulnerable.
"The versions of Firefox up to version 1.0.3 have had terrible security risks," wrote one participant for the volunteer Firefox promotion, Spread Firefox. "I think these security risks have undermined the promise of Firefox as a more secure browser."
While Firefox offers popular features like tabbed browsing that Microsoft's Internet Explorer browser doesn't have (do offer them), it has managed to a few notches in market share--primarily based on perceptions that Firefox is safer than IE.
As Firefox approaches the 50 million download mark, some participants have begun contemplating celebrations of that milestone. But others have begun to fret that security concerns are weakening what many see as the browser's primary raison d'etre.
Those concerns have sprung a major leak in the Mozilla's message that, as foundation President Mitchell Baker asserted at PC Forum last month.
"The cynical may note that two Firefox security updates have been issued since Mitchell made her comments," Mozillazine wrote in a Monday posting.
Eyeing the wave of bad press, Mozilla's marketing volunteers are staying on message with the security theme.
One campaign under consideration would associate the open-source browser with the security of a condom, showing a condom wrapped with the Firefox logo sticking out of the rear pocket of someone's jeans.
"Always use protection," the ad copy reads. "GetFirefox.com. Firefox is the free Web browser that offers greater privacy and prevents pop-ups, spyware and viruses."
The image was developed for a college poster campaign, but was scuttled because of concerns over offending people, according to the blog of Mozilla staffer Asa Dotzler, who manages Firefox and Thunderbird product releases. Mozilla said that volunteers, and not the foundation itself, planned to revive the image.
Mozilla insisted, as it has in the past, that it enjoys fundamental security advantages over IE.
"Firefox is safer for a couple of reasons," said Chris Hofmann, director of engineering for the foundation. "With these security releases, the security development community that works