Hi John, I know. I only said that I'm sad, but I know what you are saying and you are right. And I can totally understand all of those magazines advising uninstall too. It's just sad for Java.
Oracle hired a guy devoted only for security issues not so long ago (some weeks ago). He has a very impressive rock-star background in that field. Time is needed until his work will cause changes, but I just hope the situation will get better. And it has to be better if, or else... Also, I think that every virtual machine interpreted platform can be target of such attacks. Java in the spotlight of hackers is a target because it's wide spread (and maybe the security not managed well? - but some of the vulnerabilities which are exploited are fixed many months ago). Now Oracle is learning some lessons what Linux and Microsoft learned some time ago. Csaba ________________________________________ From: [email protected] [[email protected]] On Behalf Of John R. Dennison [[email protected]] Sent: Saturday, September 08, 2012 7:14 PM To: [email protected] Subject: Re: [nlug] Java security issue? On Sat, Sep 08, 2012 at 08:39:51PM -0500, Toth, Csaba wrote: > I'm involved with Java, and it's sad to see that some big technology > sites advise to uninstall Java completely. Oracle sat on at least 2 root-able vectors for a long time. Disabling or uninstalling in the face of their security mismanagement is prudent considering that at least one 0-day in the wild was dropping root kits. John -- An age is called Dark not because the light fails to shine, but because people refuse to see it. -- James Albert Michener (1907-1997), novelist, Space (1982) -- You received this message because you are subscribed to the Google Groups "NLUG" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/nlug-talk?hl=en
