[LINK] Time to disable Java again? "Fixing zero-day exploit could take 'two years'"
tomk
tomk at unwired.com.au
Tue Jan 15 11:04:01 AEDT 2013
On 15/01/2013 8:35 a.m., Fernando Cassia wrote:
> On Mon, Jan 14, 2013 at 7:39 PM, tomk <tomk at unwired.com.au> wrote:
>> Or one could delete all reference to the closed Sun/oracle Java and grab
>> the open source version....
> Tom, Java *is* open source. Sun open sourced Java in late 2006, as
> GPL, thus sparking the OpenJDK project http://openjdk.java.net
>
> Until JDK 6, Sun kept code bases separate, but as of JDK7, OpenJDK is
> the reference implementation of JDK7. Which goes to say, fixes to
> OpenJDK 7 end up in the JDK7 freeware you download from Oracle.
>
> The only difference being the web browser plug-in component, which Sun
> never open sourced,and which in Linux and other platforms is handled
> by the IcedTea project, part of OpenJDK.
Ahh, hairshirt time. Mea Culpa. I've been running sans Java for so long
on any net connected device that I haven't bothered following the
exploits of Oracle et al.
I do actually have an old win xp that is fired up if I need to browse
the real web with i.e. and "applets" but I use that only for Government
business. (They still seem to have a lot of legacy web pages for IE...
very sad.)
We actually need about twenty TomW's to help stamp this sort of legacy
"lack of funding to upgrade" nonsense out. I think Tom works on the
basis that if he embarrasses them enough with his "HTML "Fail" Reports"
they will spend budget to upgrade their public portals.
(It does seem to be working...)
TomK
<Snip>
--
That men do not learn very much from the lessons of history is the most important of all the lessons of history.
~Aldous Huxley
More information about the Link
mailing list