Back in March and April, when the Java browser plugin was getting hammered with security holes that were being exploited in the wild, we conducted a couple of unscientific polls here on FOSS Force to determine how our visitors were handling this security crisis.
To call the problems that Java was experiencing at the time a “crisis” is not an exaggeration. If you’ll remember, the situation was considered so serious that [...]
Continue reading FOSS Force Poll: We Don’t Trust Oracle Or Java
Friday FOSS Week in Review
Goodbye to Fuduntu, hello to FuSE
We already knew, of course, that Fuduntu was history, that the beloved distro was to be no more, evidently due to the fact that it was becoming nearly impossible to support GNOME 2 in any sort of meaningful way. We also knew there’d been talk among the developers at Fuduntu of continuing with a new distro. Well, now it’s a done deal and most of the developers of Fuduntu [...]
Continue reading Spy vs. Spy; Wikipedia Sports New DB & More…
We’re not ready to tell you we think it’s safe to reactivate your Java browser plugin–in fact, just the opposite–but we will say that Oracle is at least giving the appearance they’re now serious about addressing browser-side Java’s safety. Early last week they issued a security patch that fixed either 41 or 42 Java security issues, depending on what website you’re reading.
Excuse us if we don’t seem too impressed. At [...]
Continue reading Oracle Serious About Java Security–Maybe
Guess what? We’re hearing reports this morning that the black hats are continuing to take advantage of security vulnerabilities in Java. Of course they are. That’s what black hats do. We’re also hearing from security experts that browser side Java isn’t likely to be made secure in the near future.
Oracle’s management of Java since obtaining it from Sun has been nothing short of a joke. It’s about time for them [...]
Continue reading Java Remains Unsafe–Not Likely To Be Fixed Soon
Those who thought it was safe to re-up Java on their browsers will need to go back and turn it off again.
If you listen to us, after you do you’ll never turn it back on. Browser side Java has been made pretty much obsolete by newer technologies, which means you don’t need it, especially since it’s proving to be about as easy to keep secure as ActiveX, sandbox or no. [...]
Continue reading Five, Count ‘Em, Five New Security Holes In Java