If you can read this, either the style sheet didn't load or you have an older browser that doesn't support style sheets. Try clearing your browser cache and refreshing the page.

(Yahoo)   DHS advises everybody to disable Java immediately. Purple alert   (finance.yahoo.com) divider line 176
    More: Scary, Department of Homeland Security, Java, DHS advises, computer users, hacking attacks, Redwood Shores, web application, Sun Microsystems  
•       •       •

24492 clicks; posted to Geek » on 11 Jan 2013 at 8:29 PM (1 year ago)   |  Favorite    |   share:  Share on Twitter share via Email Share on Facebook   more»



176 Comments   (+0 »)
   
View Voting Results: Smartest and Funniest

Archived thread

First | « | 1 | 2 | 3 | 4 | » | Last | Show all
 
2013-01-11 08:22:36 PM  
Does this mean I can't play Minecraft?
 
2013-01-11 08:22:55 PM  
Well, this sucks.

Apparently they're not sure whether the exploit affects Java 6 or not.

FFS I just upgraded all the workstations to 7 too.
 
2013-01-11 08:23:59 PM  
You only need to disable the browser Plugin, and not run software that you don't know and trust.
 
2013-01-11 08:30:14 PM  
To checkmate
 
2013-01-11 08:30:16 PM  
What does Fedex think.
 
2013-01-11 08:31:01 PM  

Indubitably: To checkmate


Or was that to king?
 
2013-01-11 08:32:42 PM  
Who the hell is using Java applets anymore? What is this, 1996?
 
2013-01-11 08:32:48 PM  
A security flaw in Java? Unpossible!
 
2013-01-11 08:32:53 PM  
and anyone with an Android phone, throw them away
 
2013-01-11 08:33:08 PM  

TEG24601: You only need to disable the browser Plugin, and not run software that you don't know and trust.


So 99% of internet users are boned. Got it.
 
2013-01-11 08:34:32 PM  

Jon iz teh kewl: and anyone with an Android phone, throw them away


Anyone without an Android Phone should secure a weapon and fire wildly into the air.
 
2013-01-11 08:34:51 PM  

MrEricSir: Who the hell is using Java applets anymore? What is this, 1996?


Secure Mail systems use the hell out of it, and lots of other stuff. We can't do our jobs without Java.
 
2013-01-11 08:34:59 PM  
Boy am I glad I do a good chunk of my browsing inside a virtual machine. God forbid that gets corrupted.
 
2013-01-11 08:35:36 PM  
Pr0n is still ok, right?
 
2013-01-11 08:35:54 PM  

s1ugg0: TEG24601: You only need to disable the browser Plugin, and not run software that you don't know and trust.

So 99% of internet users are boned. Got it.


"It told me I had 2,318 viruses so I just hit the OK button!"

Slays me every time.
 
2013-01-11 08:36:03 PM  
Why do they want me to unplug my coffee machine?
 
2013-01-11 08:36:42 PM  
Purple alert!

img.photobucket.com
 
2013-01-11 08:36:48 PM  
Unplug.
 
2013-01-11 08:36:54 PM  
kasei.us

Blackwatch plaid level threat?
 
2013-01-11 08:36:57 PM  
I thought Java purposely released so many micro updates with its unstoppable auto-update bug that hackers had to deal with too many different versions for it to be worthwhile. I guess they're just dicks.
 
2013-01-11 08:37:29 PM  
DHS.gov has nothing about this at all, as near as I can tell.
 
2013-01-11 08:37:37 PM  

Jon iz teh kewl: and anyone with an Android phone, throw them away


If you got an Oracle JVM to run on Android, I'd be impressed.
 
2013-01-11 08:37:39 PM  

tzzhc4: [kasei.us image 300x228]

Blackwatch plaid level threat?

To plaid?

 
2013-01-11 08:38:34 PM  

TEG24601: You only need to disable the browser Plugin, and not run software that you don't know and trust.


It's my thought that if you're so uninformed as to need the above advice, you should own an apple and only buy from the app store anyway.
 
2013-01-11 08:38:49 PM  
How do you disable a province in Indonesia?
 
2013-01-11 08:39:00 PM  
I never update my Java, so am I safe or not?
 
2013-01-11 08:39:13 PM  

make me some tea: MrEricSir: Who the hell is using Java applets anymore? What is this, 1996?

Secure Mail systems use the hell out of it, and lots of other stuff. We can't do our jobs without Java.


Your mail system runs on a Java applet!? Ho. Lee. Shyte.
 
2013-01-11 08:39:57 PM  

Saberus Terras: Does this mean I can't play Minecraft?


I'll take the risk.
No regrets. Just make sure to back up everything
 
2013-01-11 08:40:37 PM  
Went to check it- I never installed it when I reinstalled windows and didnt notice.
 
2013-01-11 08:42:23 PM  

davidphogan: How do you disable a province in Indonesia?


They took our jorbsCOFFEE!!!
 
2013-01-11 08:43:05 PM  

100 Watt Walrus: DHS.gov has nothing about this at all, as near as I can tell.


I found a couple of articles on Slashdot that go into a lot more detail.
 
2013-01-11 08:43:15 PM  
Keep Calm
and
Disable Java
 
2013-01-11 08:44:06 PM  

Gyrfalcon: I never update my Java, so am I safe or not?


No. It's not safe, it's... very dangerous, be careful.

img.photobucket.com
 
2013-01-11 08:44:43 PM  
French Roast?
 
2013-01-11 08:44:44 PM  
Meh.  I did Java for a bit, and then switched to C# when I changed jobs.  It seems like it could be a lot cleaner, only I can't figure out how to get the C# assemblies out of debug and into the coffee grinder, and all those dang '=>' parts of lambda functions keep choking up my milk steamer.  I may be doing something wrong.
 
2013-01-11 08:45:31 PM  

TEG24601: You only need to disable the browser Plugin, and not run software that you don't know and trust.


Yep... this is the kind of journalism that pisses me off.

"DHS said disable Java"

So, this is important enough that the federal farking government is involved, but not important enough for the AP, the supposed most "respected" (you can't tell that I didn't type that with a straight face) news organization left in this country, can't be bothered to tell us exactly what you're supposed to do. Java, the language, runs in frikkin everything from PCs to automobiles. But yes, the important thing is that you shut it off in your browser. If you're giving desktop applications permission to do things without knowing what they do, then Java isn't the problem.

Besides, these days, every browsers gives you a BIG SCARY WARNING before running a Java applet anyway. Most people get nervous and scared already when they see it pop up. (Ironally, they're more scared of the Java security warnings than they are of the Happy Fun Antivirus popups...)
 
2013-01-11 08:45:46 PM  

Notabunny: Gyrfalcon: I never update my Java, so am I safe or not?

No. It's not safe, it's... very dangerous, be careful.

[img.photobucket.com image 450x250]


You wanna know how I know you are a Republican?
 
2013-01-11 08:46:14 PM  
Like I trust what the DHS tells me anyway.
 
2013-01-11 08:46:16 PM  
Larry Ellison, you suck.
 
2013-01-11 08:46:27 PM  

Indubitably: Notabunny: Gyrfalcon: I never update my Java, so am I safe or not?

No. It's not safe, it's... very dangerous, be careful.

[img.photobucket.com image 450x250]

You wanna know how I know you are a Republican?


*sniktily*
 
2013-01-11 08:47:25 PM  

Notabunny: Purple alert!

[img.photobucket.com image 260x194]


Please. Add in some clamps and put that man in a dress, and you have a good time going on there.
 
2013-01-11 08:47:57 PM  

Abox: What does Fedex think.


www.gifs.net
 
2013-01-11 08:49:00 PM  
To snikt
 
2013-01-11 08:50:21 PM  

UsikFark: Abox: What does Fedex think.

[www.gifs.net image 81x81]


That took awhile...
 
2013-01-11 08:51:08 PM  

Indubitably: Indubitably: Notabunny: Gyrfalcon: I never update my Java, so am I safe or not?

No. It's not safe, it's... very dangerous, be careful.

[img.photobucket.com image 450x250]

You wanna know how I know you are a Republican?

*sniktily*


Thanks for teh giggles! Happy Friday! (current fav)

img.photobucket.com
 
2013-01-11 08:51:57 PM  
Done, long ago. (Firefox)

Sure, it's a bit of a PITA when I have to "allow" certain websites to view videos, features, etc, but pages load much more quickly, and coupled with adblock, I don't see 99% of the shiat.

Happy days.
 
2013-01-11 08:52:54 PM  

MrEricSir: make me some tea: MrEricSir: Who the hell is using Java applets anymore? What is this, 1996?

Secure Mail systems use the hell out of it, and lots of other stuff. We can't do our jobs without Java.

Your mail system runs on a Java applet!? Ho. Lee. Shyte.


No, but large insurance carriers do, on the client side, which is the part we use.
 
2013-01-11 08:56:41 PM  

100 Watt Walrus: DHS.gov has nothing about this at all, as near as I can tell.


http://www.us-cert.gov/current/#us_cert_releases_oracle_java
 
2013-01-11 08:57:35 PM  

jonny_q: But yes, the important thing is that you shut it off in your browser. If you're giving desktop applications permission to do things without knowing what they do, then Java isn't the problem.


The article should have mentioned that this only applies to applets. As I understand it, the vulnerability is a way to break out of the applet sandbox and get full user privileges.

Regular apps -- Java or otherwise -- already run with full user privileges. So those aren't affected.
 
2013-01-11 08:58:16 PM  
It's in the news, sure, but none of my trusted security sources are raising any alarms about it yet.

Internet Storm Center Dashboard
 
Displayed 50 of 176 comments

First | « | 1 | 2 | 3 | 4 | » | Last | Show all

View Voting Results: Smartest and Funniest


This thread is archived, and closed to new comments.

Continue Farking
Submit a Link »
On Twitter





In Other Media


  1. Links are submitted by members of the Fark community.

  2. When community members submit a link, they also write a custom headline for the story.

  3. Other Farkers comment on the links. This is the number of comments. Click here to read them.

  4. Click here to submit a link.

Report