Beta in itself should be reason enough to deny access.
The server could handle it, but for security reasons some choose not to.
Similarly some prevent use of older browsers.
Nothing suggested they should not also be concerned about invalid requests.
It is not either/or.
Preventing access with a Beta product ads another layer the integrity of the
system.

--
Jupiter Jones [MVP]
http://www3.telus.net/dandemar
http://www.dts-l.org


"Homer J. Simpson" <root@127.0.0.1> wrote in message
news:uWTibVQzGHA.4576@TK2MSFTNGP06.phx.gbl...

> Define the criteria by which a bank should "like" a client's software or
> not, and what should be done about it.
>
> A secure server should be able to handle any request coming from any
> client, whether the end user is using an RTM browser, a beta, or a
> home-grown one trying that's trying to impersonate something else. Anyone
> writing server-side code should be more concerned with rejecting invalid
> requests than verifying whether the client's browser is a beta or not.

> Preventing access with a Beta product ads another layer the integrity of

> the system.

With all due respect, I don't buy that at all. I hope you're not suggesting
that the traditional browser sniffing methods add anything to security. If
so, I might as well write my own "browser" that identifies itself as IE6 and
start attacking one of those IE-only sites...

Not allowing a known Beta adds another layer of security.
In and of itself it adds little, but combined with other layers helps keep
the computer secure.

Go ahead and write if you are able...

--
Jupiter Jones [MVP]
http://www3.telus.net/dandemar
http://www.dts-l.org


"Homer J. Simpson" <root@127.0.0.1> wrote in message
news:ODceNedzGHA.3568@TK2MSFTNGP03.phx.gbl...

> With all due respect, I don't buy that at all. I hope you're not
> suggesting that the traditional browser sniffing methods add anything to
> security. If so, I might as well write my own "browser" that identifies
> itself as IE6 and start attacking one of those IE-only sites...

> Not allowing a known Beta adds another layer of security.

> In and of itself it adds little, but combined with other layers helps keep
> the computer secure.
>
> Go ahead and write if you are able...

Even if I had the time, inclination, or anything to prove to yourself or
others, what exactly would that prove?

> Neither does ..., CitiBank ... will though.

>

citibank.com works, but citibank.de does not (I'm German.) - and does also
not work with Firefox on Vista.
So we'll have to wait for RC2 or a change on the Citibank servers.

Walter