Re: Is Java insecure ?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



On Sat, Oct 5, 2013 at 6:21 PM, Mark LaPierre <marklapier@xxxxxxx> wrote:

> Java, which runs on a Java Virtual Machine (JVM) is know in
> the trade as (J)ust (A)nother (V)ulnerability (A)nnouncement
>

Let's try to be serious here. Theres funny definitions based on
acronyms,based on everyone's agendas. Some who opposed SNMP called it
"security is not my problem", because of shortcomings in the first version.
Last time I checked, SNMP was mature and used throughout corporate LANs.
Security is a process, not a definitive state. FOSS software is patched all
the time too, and for good reason.

http://www.mail-archive.com/blueonyx@xxxxxxxxxxxxxxxx/msg05233.html



> .  Java
> should never be enabled in a web browser.
>

To quote Icedtea-web* Red Hat developer Andrew Haley :
"Andrew Haley <aph@xxxxxxxxxx> wrote:
I think this [removing the plug-in] is truly dreadful reasoning.  Either we
think that the
plugin is safe enough for people to use, or we don't ship it."

Anyway, enough said I think that by now the original poster's question has
been throrougly answered.

FC
* (Icedtea-web is the FOSS version of the Java plug-in for OpenJDK, as Sun
open sourced Java in 2006 but never the browser plugin, that need was
filled by the FOSS community via Icedtea-web)

-- 
During times of Universal Deceit, telling the truth becomes a revolutionary
act
Durante épocas de Engaño Universal, decir la verdad se convierte en un Acto
Revolucionario
- George Orwell
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos





[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux