Brian Krebs thinks so:

    • Java is now among the most frequently-attacked programs, and appears to be fast replacing Adobe as the target of choice for automated exploit tools used by criminals.

Of the systems which I personally administrate as the ‘Chief Family Technology Officer’, the Java updates constantly annoy and confuse my mom who uses Vista… Vista on a locked down system protected by ESET Smart Security’s Firewall and Antispam… and a system which I do the updates on personally. Even with those protections, she calls me about the FakeAV alerts she sees on compromised sites wondering whether they’re something that she needs to update. I feel that people trust their computers far too much and click those ‘update’ boxes even when they’ve been through a lot of user education.

Is it required for her to have Java? Not really a mainstream product however there were some educational tools she needed to use. My solution is to use two browsers – I configure one for the most use and let the other one keep all the ‘funky add-ons’. Because she’s operating 64-bit, the 32-bit version of Internet Explorer also works as a ‘soft backup’ so that actually makes for three browsers on a single system.

Should I remove Java now? I’ll give it another look when I do her updates the next time. Because of the multiple browser configuration, I may remove it from the primary browser she uses and keep it on a secondary one just in case she needs it.

After all, the CFTO position is one which most of our readers hold in their household as well.

How do you handle the configuration management requirements of your family’s technology?

Securing Our eCity Contributing Writer