Jump to content

Question

Posted

[center][size=6]Java! Uninstall It, Update it, or bend over and grab the ketchup![/size][/center]
[center][i][size=5]For some of you, this is news![/size][/i][/center]

If you have it, but don't know you explicitly really need it, please uninstall it immediately!!

Java is bad. Not by itself, but by the exploits it brings along with it. While you may have the most current version, the bad guys always seem to keep a zero day vulnerability close to their hearts!

The current version of Java (version 7) does in fact use DEP. Which should (in theory keep Vista and Windows 7 users safe, until proven it doesn't). For those of you using XP, you should come up with a really good reason why you still need java.

My mom who does stock trading. I tell her, "Please keep java updated. Only use Java with IE. The rest of the time, use Java Firefox and the Quickjava extension with Java DISABLED!"

While a lot of you love java, (I Love a cup of coffee as much as the next guy) Please take Java seriously, otherwise you may be looking down a malware infested barrel, called a rootkit infested machine!

For those of you who know and program in Java and are OK with the consequences of having it installed "More power to you!".

For the rest of the Neowin members, if you have Java, that's great, but please ([b]for the love of god[/b]) keep it up to date, or disabled until you need it!


[quote]
Walfgang Kandek, CEO of Qualys, said that the 200,000 who visited broswere security service [b]BrowserCheck[/b] in July 2010

Share this post


Link to post
Share on other sites

87 answers to this question

  • 0

Posted

Someone get the ZeroAccess?

Share this post


Link to post
Share on other sites
  • 0

Posted

[quote name='XPGoD' timestamp='1324097654' post='594526205']
Someone get the ZeroAccess?
[/quote]

Nope, although every infested Malware /rootkit machine that comes into my office has an out of date version of java

Share this post


Link to post
Share on other sites
  • 0

Posted

If you ain't using 1.7.02 for reasons other than not working with your stuff, please punch yourself.

Share this post


Link to post
Share on other sites
  • 0

Posted

What's so special about Java that it deserves its own thread? Doesn't this rule apply to any software; update it or risk getting infected.
2 people like this

Share this post


Link to post
Share on other sites
  • 0

Posted

[quote name='giantpotato' timestamp='1324099667' post='594526247']
What's so special about Java that it deserves its own thread? Doesn't this rule apply to any software; update it or risk getting infected.
[/quote]
This plus just disable Java in your browser. That's what I do since only thing I use Java for is Minecraft.

Share this post


Link to post
Share on other sites
  • 0

Posted

Java should be destroyed entirely. The only reason that it exists is that the .NET framework hasnt been opened to other OSs. If so, C# would **** all over it.
5 people like this

Share this post


Link to post
Share on other sites
  • 0

Posted

Why is Java needed? I've just spent hours removing malware from my brothers laptop.

Share this post


Link to post
Share on other sites
  • 0

Posted

Strange, I have installed JAVA on every machine I owned regardless of whether I needed it or not and have never been infected because of it.

Share this post


Link to post
Share on other sites
  • 0

Posted

I work in information security where we have IDS's setup. We regularly see java getting owned and malware being installed even on current versions within corporate environments. On peoples home PC's..yikes...

Share this post


Link to post
Share on other sites
  • 0

Posted

I fricking hate Java.. I think the fundamental concepts of the language, and it being cross platform etc are excellent but like so many things to do with Oracle, it's just been horrendously implemented.

It seems to need updating on a near weekly basis and even if you turn off automatic updating, it still bugs you about updating. Not to mention how unreliable it is and the penchant it has for locking up / breaking. Hateful. I just wish it would go away and die somewhere quietly, and take Oracle with it.
1 person likes this

Share this post


Link to post
Share on other sites
  • 0

Posted

Will NEVER install Suns version of this total POS software!!

The ONLY use I have really ever seen for this bloated, insecure junk is java speed tests. I simply don't run those.

The 3 most attacked (and crappiest) pieces of software ever written, IMO, are java, flash, Windows!!

Share this post


Link to post
Share on other sites
  • 0

Posted

Careful internet use and a good updated AV and Windows will still protect against JAVA exploits though right ?

Same as with any malware ?

Share this post


Link to post
Share on other sites
  • 0

Posted

This again?

We get it -- you hate Java. But for the rest of us, we have to use it and learn to deal with it.

Get over it already.

Share this post


Link to post
Share on other sites
  • 0

Posted

[list=1]
[*]Not Back Page News material
[*]Never seen malware via Java.
[/list]

[img]http://www.myfacewhen.com/i/501.jpg[/img]
1 person likes this

Share this post


Link to post
Share on other sites
  • 0

Posted

[quote name='tiagosilva29' timestamp='1324128535' post='594526655'][list=1]
[*]Not Back Page News material
[*]Never seen malware via Java.
[/list]

[img]http://www.myfacewhen.com/i/501.jpg[/img]
[/quote]



You look a little baffled George :laugh:
1 person likes this

Share this post


Link to post
Share on other sites
  • 0

Posted

This is not news.

[i]Thread Moved[/i]

Share this post


Link to post
Share on other sites
  • 0

Posted

I would remove it, but i can't I am a java programmer and I need it to make server applications with!! :p I would NEVER EVER use Java for desktop applications period, but for server applications its great :)

Share this post


Link to post
Share on other sites
  • 0

Posted

People are always asking me how to stay secure with their computers. Then I spin into the "keep Windows up to date, keep adobe up to date, adobe everything, and keep java up to date.

After their eyes stop glazing over I then walk over to the "laptop", remove java from the control panel, stop the computer from going to sleep every 20 minutes, and set Windows updates to happen at 3pm every day not 3am. Then I update Adobe and hope that they get the Adobe download that asks if you want to keep it up to date automatically. Where can I make that happen anyway? I can't seem to find that download all the time. Sometimes Adobe will provide a check mark to keep it updated automatically and sometimes it won't.

Then I put on MSE because it pretty much takes care of itself and set it to also scan once a week during the day. THEN I tell them to try and leave the computer on at 3pm every now and then to insure all the updates happen. OR do the updates manually.

Is it too much to ask the consumer to keep their computers updated to avoid getting viruses? That's the easiest question of all. YES. Warwagon knows...
1 person likes this

Share this post


Link to post
Share on other sites
  • 0

Posted

I removed Java 7 and 6. I like playing dominoes and yahoo pool.

They don't work on it.

J2SE v1.5.0 is what yahoo tries to install and that works.

I wish we could have ms virtual machine which I enjoyed, but, NO.

Share this post


Link to post
Share on other sites
  • 0

Posted

[quote name='SuperKid' timestamp='1324154066' post='594527261']
I would remove it, but i can't I am a java programmer and I need it to make server applications with!! :p I would NEVER EVER use Java for desktop applications period, but for server applications its great :)
[/quote]

Wait, what? People are actually using JAVA applications on servers? Is it a heavy-load server or just a server that runs JAVA applications for some small tasks?

Share this post


Link to post
Share on other sites
  • 0

Posted

But but but, Minecraft...

Share this post


Link to post
Share on other sites
  • 0

Posted

[quote name='Coolicer' timestamp='1324157043' post='594527331']
Wait, what? People are actually using JAVA applications on servers? Is it a heavy-load server or just a server that runs JAVA applications for some small tasks?
[/quote]
http://en.wikipedia.org/wiki/Java_Platform,_Enterprise_Edition

Share this post


Link to post
Share on other sites
  • 0

Posted

[quote name='htcz' timestamp='1324122101' post='594526551']
Java should be destroyed entirely. The only reason that it exists is that the .NET framework hasnt been opened to other OSs. If so, C# would **** all over it.
[/quote]
Uh, check out Mono. Woops, there goes your theory.

Java exists for a few very good reason, though you may not be aware of them.

[quote name='jimmyfal' timestamp='1324155092' post='594527289']
Is it too much to ask the consumer to keep their computers updated to avoid getting viruses? That's the easiest question of all. YES. Warwagon knows...
[/quote]
I think ANYBODY who's worked in the repair industry knows - it's impossible :p

[quote name='Coolicer' timestamp='1324157043' post='594527331']
Wait, what? People are actually using JAVA applications on servers? Is it a heavy-load server or just a server that runs JAVA applications for some small tasks?
[/quote]
There are servers that actually run on Java, yes. Depending on the situation, it can make a lot of sense.
[url="http://en.wikipedia.org/wiki/JavaServer_Pages"]http://en.wikipedia....avaServer_Pages[/url]
[url="http://en.wikipedia.org/wiki/Sun_Java_System_Web_Server"]http://en.wikipedia.org/wiki/Sun_Java_System_Web_Server[/url]

Share this post


Link to post
Share on other sites
  • 0

Posted

what about the ketchup?

Share this post


Link to post
Share on other sites
  • 0

Posted

[quote name='_Heracles' timestamp='1324098256' post='594526217']
If you ain't using 1.7.02 for reasons other than not working with your stuff, please punch yourself.
[/quote]

did they ever fix the error with the IE extension that 1.7 installs?

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0

  • Recently Browsing   0 members

    No registered users viewing this page.