Security of Java takes a dangerous turn for the worse, experts say

[TequilaChaser]

for those of you who think using java has no effect on you,


you should read the following link

Security of Java takes a dangerous turn for the worse, experts say

Beware of increasingly advanced exploits targeting flaws that will never be fixed.

http://arstechnica.com/security/2013/09/security-of-java-takes-a-dangerous-turn-for-the-worse-experts-say/


there is more problems regarding "Java" besides what is mentioned in the above linked article...... 


hope this helps someone

TC

[Skuzzy]

Java has always been an exploit waiting to happen.  The single worst thing that has ever happened to the computer industry.

[MrRiplEy[H]]

Java has always been an exploit waiting to happen.  The single worst thing that has ever happened to the computer industry.

Luckily nobody is forced to have it on the computer. I never install the thing and remove it even from OSX.

[mipoikel]

Luckily nobody is forced to have it on the computer. I never install the thing and remove it even from OSX.

Danske Bank... good thing is they have changed it a few months ago but people still need java if they want to use danske bank when paying in webstores.

[Bizman]

Danske Bank... good thing is they have changed it a few months ago but people still need java if they want to use danske bank when paying in webstores.

Old William knew that centuries ago:

Something is rotten in the state of Denmark.

[MrRiplEy[H]]

Danske Bank... good thing is they have changed it a few months ago but people still need java if they want to use danske bank when paying in webstores.

Nobody is forced to use Danske bank...

Quote from: Marcellus (Hamlet Act 1, scene 4, 90)
Something is rotten in the state of Denmark.

ROFL good one Bizman. Hit the nail in the head.

[Vulcan]

Java has always been an exploit waiting to happen.  The single worst thing that has ever happened to the computer industry.

what are the options? Go back to 1990's internet?

[BaldEagl]

I uninstalled Java from all my machines several months ago.  I've yet to run into anything I'm missing on the Internet without it although there was one web-site that asked me to install it to access their "content".

[MrRiplEy[H]]

what are the options? Go back to 1990's internet?

Java is very rarely needed on anything web page related. It's mostly used for different kinds of applications. Javascript then again is very common. But for safety reasons javascript should be blocked too.

[Skuzzy]

what are the options? Go back to 1990's internet?

You of all people should appreciate the fact Java is a huge security problem which cannot be made secure.  Yes, I would rather go back to pure HTML, than run an ill designed implementation prone to unlimited exploits.

[Bino]

It is certainly true that Java version 7 has huge problems, but the gist of the alarmist article is that Java version 6, "...which Oracle stopped supporting in February...", (over six months ago!) is unpatched and vulnerable.  And that if you must sill use Java you should update to Java version 7, ASAP.

[MrRiplEy[H]]

It is certainly true that Java version 7 has huge problems, but the gist of the alarmist article is that Java version 6, "...which Oracle stopped supporting in February...", (over six months ago!) is unpatched and vulnerable.  And that if you must sill use Java you should update to Java version 7, ASAP.

Some applications actually require Java6. Updating can result in nasty surprises: http://www.jnbridge.com/jn/blog/2013/01/28/java-7-update-silently-deletes-java-6-breaks-applications/

[Patches1]

Folks,

I'm just a layman so I am understanding that JAVA is not the same as JavaScript? Am I correct? Is JavaScript safe to use?

Thanx

[715]

Folks,

I'm just a layman so I am understanding that JAVA is not the same as JavaScript? Am I correct? Is JavaScript safe to use?

Thanx

Java and Javascript are not the same. For example, despite the name, Javascript is not a script version of Java.  Java is dangerous and not really needed for run of the mill web pages.  Javascript can also be dangerous, but pretty much nothing on the web will work properly with it disabled.  So you pay your money and takes your chances.

[MrRiplEy[H]]

Java and Javascript are not the same. For example, despite the name, Javascript is not a script version of Java.  Java is dangerous and not really needed for run of the mill web pages.  Javascript can also be dangerous, but pretty much nothing on the web will work properly with it disabled.  So you pay your money and takes your chances.

Actually most things on the web will work at basic level without javascript but some badly made websites may have even hyperlinks and menus disabled if you don't enable javascript. I always run noscript on my computers so by default no website uses any javascript or flash when I enter them. If I see the need for it I can enable a specific site for javascript but leave googleapi etc sites disabled. Often ad networks are a source of attacks so better not to see them. And this of course is while using Mac or Linux - with windows I don't browse the net. Period.