[LINK] Time to disable Java again? "Fixing zero-day exploit could take 'two years'"

tomk tomk at unwired.com.au
Tue Jan 15 09:39:59 AEDT 2013


On 15/01/2013 1:21 a.m., Robin Whittle wrote:
> I ruffled some Link feathers on 2012-09-18 by reporting that maybe Java
> should be disabled on PCs in general, at least in terms of it being able
> to run in web browsers.
>
> Then, I found that automatic updates had not updated my Java version, so
> it still had a vulnerability which was by then widely known and being
> exploited.  Then, the fix was apparently developed quickly.  This time,
> some security folks are quoted as being much more pessimistic that the
> Java virtual machine will ever be secure enough to let random
> web-browsing run software on it.
>
> http://www.zdnet.com/security-experts-on-java-fixing-zero-day-exploit-could-take-two-years-7000009756/?s_cid=e539
>
> Googling for news with   Java security   turns up lots of material.
>
>
>    - Robin
Or one could delete all reference to the closed Sun/oracle Java and grab 
the open source version....

http://internode.dl.sourceforge.net/project/javara/javara/JavaRa/JavaRa.zip 
just a little more secure and less well known.

TomK



More information about the Link mailing list