Feel free to have your say but I am wholly surprised you recommend the java enterprise environment as a solution as its not browser specific, it works in most - and as such the weakneses are equally exposed.

Not only is it that J2EE is not suited to the discussion but it requires development skills way above what has been discussed.

You may be peeved by browser blind developers, but I would say I am peeved by a browser blinded users who do not understand the differences. - Just cause its J2EE does not mean MS browsers are excluded or exempt from any flaws in it.

Like I said, I use what is dictated, it does not mean by default it is flawed. Many banks do and we dont have a small problem let alone a huge one - if you have personal preference then fine, just dont try pass it off as a technical reason.

The day you rely on your non MS website being secure is the day you get bit in the ass as it has already happened many times.

If you think j2ee is secure, then lets compare notes.