Hi :) It's not so much the exploits, attackers and vulnerability to malware that worry me (especially on a unix-based platform such as a Gnu&Linux or Mac). Mostly the problem is that it creates problems and just seems to fall over or go wonky on it's own without any help from outsiders. I'm sure it wasn't this bad a few years ago.
Luckily the devs have been doing 2 things along with everything else they do; * removing dependence on java * removing old comments that don't make much sense any more Unfortunately most of the Accessibility stuff is still almost totally dependant on Java although i think a couple of people are working on that. I think many of the Extensions have also removed dependence on java and most of the wizards have been done (apparently) (although i hope that when they get to the Base wizards they consider just removing entire wizards to save time) Regards from Tom :) >________________________________ > From: Dan Lewis <[email protected]> >To: [email protected] >Sent: Sunday, 13 January 2013, 11:35 >Subject: Re: [libreoffice-users] Embedded Java > >On 01/13/2013 03:28 AM, Jay Lozier wrote: >> On 01/12/2013 10:42 PM, George R. Crossman wrote: >>> I'm seeing warnings saying that one should disable embedded Java to avoid >>> hacking. Does this apply to linux users? If so, what is the procedure? >>> >>> George Crossman >>> >> George, >> >> Yes, all OS's are affected because Java is cross platform. I am not sure if >> any of the previous version are affected or if only the current release is >> affected. >> >> The primary concern is Java applets run by your browser. The vulnerability >> allows a zero-day browser exploit that as yet is not patched by Oracle. The >> primary concerns I have heard of are installation of keyloggers and >> installation of ransomware. I would assume the malware will use the JVM to >> run and would be cross platform. AFAIK, Oracle has not yet announced when a >> patch will be available. >> >> It is highly recommended that Java be disabled in your browser(s) regardless >> of the version. Note JavaScript is not affected, it is entirely different >> than Java. Currently this warning does not cover non-browser applications >> that use the JVM. > If you use Firefox and update your operating system regularly, >Firefox should have already disabled the JVM add-on. Check Tools -> Add-ons >for it if you use Firefox. Also check the Help section for specific >information about how to disable Java in your browser. > >--Dan > >-- For unsubscribe instructions e-mail to: [email protected] >Problems? http://www.libreoffice.org/get-help/mailing-lists/how-to-unsubscribe/ >Posting guidelines + more: http://wiki.documentfoundation.org/Netiquette >List archive: http://listarchives.libreoffice.org/global/users/ >All messages sent to this list will be publicly archived and cannot be deleted > > > > -- For unsubscribe instructions e-mail to: [email protected] Problems? http://www.libreoffice.org/get-help/mailing-lists/how-to-unsubscribe/ Posting guidelines + more: http://wiki.documentfoundation.org/Netiquette List archive: http://listarchives.libreoffice.org/global/users/ All messages sent to this list will be publicly archived and cannot be deleted
