Comments on: Java zero day = time to disable Java, in your browser at least http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/ News, Views, and Insight from the ESET Security Community Mon, 03 Feb 2014 08:49:00 +0000 hourly 1 http://wordpress.org/?v=3.7 By: andyusfr.nooz@gmail.com http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-4005 Mon, 06 May 2013 15:18:00 +0000 http://blog.eset.com/?p=14964#comment-4005 Thank you. Like I said, I can’t remember which article…but, hopefully I will find it, again…A.

06 mai 2013 17h17.

]]>
By: dharleyatESET http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-4004 Mon, 06 May 2013 13:52:00 +0000 http://blog.eset.com/?p=14964#comment-4004 Actually, I meant the article you’re commenting on. http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/

]]>
By: andyusfr.nooz@gmail.com http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-4002 Mon, 06 May 2013 13:29:00 +0000 http://blog.eset.com/?p=14964#comment-4002 Thank you, dharley…, for your reply. The only problem now, I read so much yesterday, could you give me the “How to” to refind “Stephen’s article?” I am sure I bookmarked it somewhere, but this old brain can’t remember where! While I am imposing…It took me about 20 min. to open this. Would you have the patience to tell me how to go back to where I was when I wrote my first “Post?” I tried clicking on everything on the e mail, everytime I had the message “Server not found.” I did say I am “The” beginner. In any event, thank you for replying. Have a nice day…A. 06 Mai 2013 15h28.

]]>
By: dharleyatESET http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-4000 Sun, 05 May 2013 13:36:00 +0000 http://blog.eset.com/?p=14964#comment-4000 You don’t need Java or Flash for your PC to work, in principle. However, you may need to have them enabled in order to access some sites, data and applications. If that’s likely to apply to you, it’s probably better to disable them by default and enable them temporarily when you need them, and Stephen’s article does address ways of disabling Java in the most common-used browsers.

]]>
By: andyusfr.nooz@gmail.com http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-3998 Sun, 05 May 2013 10:51:00 +0000 http://blog.eset.com/?p=14964#comment-3998 I am a full fledged 70 y.o beginner at this whole PC/net/web thing. You say remove Java (and/or Adobe Flash), but what replaces it (them)? Don’t I have to have it (them) to use my PC correctly? I have XP Prof., Sp3, use FF, Office 2010 Pro. Next month am “moving in” to a new custom built PC with Windows 8 Pro., Office 2013 Pro.. Should I anticipate some action about Java (and/or Adobe Flash)? I am certain that you all have forgotten more than I will ever know about all this, so please forgive me if my question is, as I am, amateur! Thank you, in advance, for your advice…a. 05 mai 2013 12h51 pm

]]>
By: sarabjeet http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1114 Wed, 10 Oct 2012 11:27:26 +0000 http://blog.eset.com/?p=14964#comment-1114 i really like that you are giving information on core and advance java concepts. Being enrolled at i found your information very helpful indeed.thanks for it.

]]>
By: spraulin http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1113 Tue, 09 Oct 2012 05:32:06 +0000 http://blog.eset.com/?p=14964#comment-1113 Time to disable Adobe Flash as well. I did it and my browsers are not constantly crashing or lagging anymore :D
The sooner these 2 forms of evil bloatware fall off the map the better!!!

]]>
By: David Harley http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1112 Fri, 31 Aug 2012 12:57:21 +0000 http://blog.eset.com/?p=14964#comment-1112 @Lasse, do you mean use it deactivate Java? That might not be necessary once you’ve used the patches now available.

]]>
By: David Harley http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1111 Fri, 31 Aug 2012 11:43:02 +0000 http://blog.eset.com/?p=14964#comment-1111 The difference is that many people don’t _need_ Java. You can’t do much without an operating system. :) And in fact, the option isn’t necessarily to disable Java permanently, though obviously some people are considering it.

]]>
By: lxw http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1110 Fri, 31 Aug 2012 11:35:42 +0000 http://blog.eset.com/?p=14964#comment-1110 any popular platform will have same issue, someone will break it at some time, should you say 'let's disable Windows' or 'let's not use OSX"?

]]>
By: Lasse http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1109 Fri, 31 Aug 2012 07:07:43 +0000 http://blog.eset.com/?p=14964#comment-1109 Hi in my firefox i have QuickJava 1.8.0   shall i also deactivate it ?
 

]]>
By: Fireshard http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1108 Thu, 30 Aug 2012 21:05:27 +0000 http://blog.eset.com/?p=14964#comment-1108 I have read about 2 days ago about this flaw in Java. The way it was put there, it was only seen on Windows platforms, but the the way the bug works allows attacks on ANY platform. It basically works by allowing applications to download stuff into your computer and run them, if i read this correctly. Meaning it could do this on any platform, if the said application has it as its purpose.

]]>
By: Stephen Cobb http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1107 Thu, 30 Aug 2012 17:03:01 +0000 http://blog.eset.com/?p=14964#comment-1107 Great catch Rahim and gumbly! We have edited the blog to use “about:plugins” although “opera:config” does also work as you point out. BTW, as you probably know, Opera has a very handy option to disable all plug-ins at once on that plug-ins page. Very useful for debugging and for security.

]]>
By: David Harley http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1106 Thu, 30 Aug 2012 16:42:47 +0000 http://blog.eset.com/?p=14964#comment-1106 We can’t really advise on individual apps that we haven’t tested (and we probably aren’t going to test everything). However, the first priority is to disable it in browsers. I’m not aware of malware using this vulnerability to target Linux at present: of course, it could happen, but Windows is the prime target.

]]>
By: David Harley http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1105 Thu, 30 Aug 2012 16:40:18 +0000 http://blog.eset.com/?p=14964#comment-1105 I don’t know the game, but if it requires Java, I guess that’s a problem. If you only have Java disabled in your browser(s), that makes you a lot safer even if you have it enabled for specific apps, though.

]]>
By: LittleboyBlue http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1104 Thu, 30 Aug 2012 16:30:35 +0000 http://blog.eset.com/?p=14964#comment-1104 How will I play runescapes :'[

]]>
By: jake http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1103 Thu, 30 Aug 2012 16:28:51 +0000 http://blog.eset.com/?p=14964#comment-1103 How will this affect the people that use Serato, Virtual DJ, or Traktor ? Also, will this affect Ubuntu users ?

]]>
By: Susan http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1102 Thu, 30 Aug 2012 16:12:51 +0000 http://blog.eset.com/?p=14964#comment-1102 In Chrome, mine for Java 6.0.260.3, says, "Download Critical Security Update." And thanks!

]]>
By: David Harley http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1101 Thu, 30 Aug 2012 11:50:12 +0000 http://blog.eset.com/?p=14964#comment-1101 R.D. Gates: Understood. 1.7 update 6 is vulnerable.

]]>
By: David Harley http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1100 Thu, 30 Aug 2012 10:58:44 +0000 http://blog.eset.com/?p=14964#comment-1100 Thanks @gumbly and @Rahim.

]]>
By: gumbly http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1099 Thu, 30 Aug 2012 09:24:47 +0000 http://blog.eset.com/?p=14964#comment-1099 quick note re: Opera… the article states that
"You can quickly access and change the plug-in settings in the Opera browser by entering “about.config” in the address bar (without quotation marks) to display this screen:"
the "about.config" bit is incorrect (note the period)
enter "about:config" (colon between words, without quotes) in the address bar to view the prefences editor
"opera:config" also works
otherwise, great info… thanks
 

]]>
By: Rahim Ali http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1098 Thu, 30 Aug 2012 05:58:18 +0000 http://blog.eset.com/?p=14964#comment-1098 Otherwise, very helpful.  Comprehensive guide to disabling Java in most commonly used browsers in one place.  Thanks a lot!

]]>
By: Rahim Ali http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1097 Thu, 30 Aug 2012 05:55:37 +0000 http://blog.eset.com/?p=14964#comment-1097 Correction Re: Disabling Java in Opera:
"You can quickly access and change the plug-in settings in the Opera browser by entering “about.config” in the address bar (without quotation marks) to display this screen"
should actually be 
"You can quickly access and change the plug-in settings in the Opera browser by entering “about:plugins” in the address bar (without quotation marks) to display this screen"

]]>
By: R D Gates http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1096 Thu, 30 Aug 2012 00:50:31 +0000 http://blog.eset.com/?p=14964#comment-1096 Darn it – that's SE 6 not SE ^

]]>
By: R D Gates http://www.welivesecurity.com/2012/08/29/disabling-java-a-safer-way-to-browse/#comment-1095 Thu, 30 Aug 2012 00:50:02 +0000 http://blog.eset.com/?p=14964#comment-1095 My Firefox shows the Java Platform at revision SE ^ not SE 7.  Do I have to disable it?
Thanks
 

]]>