Re: [libreoffice-users] Embedded Java

Hi :)
It's not so much the exploits, attackers and vulnerability to malware that worry me (especially on 
a unix-based platform such as a Gnu&Linux or Mac).  Mostly the problem is that it creates problems 
and just seems to fall over or go wonky on it's own without any help from outsiders.  I'm sure it 
wasn't this bad a few years ago.  

Luckily the devs have been doing 2 things along with everything else they do;  
 *  removing dependence on java
 *  removing old comments that don't make much sense any more
Unfortunately most of the Accessibility stuff is still almost totally dependant on Java although i 
think a couple of people are working on that.  

I think many of the Extensions have also removed dependence on java and most of the wizards have 
been done (apparently) (although i hope that when they get to the Base wizards  they consider just 
removing entire wizards to save time)  
Regards from
Tom :)  





> ________________________________
> From: Dan Lewis <elderdanlewis@gmail.com>
> To: users@global.libreoffice.org 
> Sent: Sunday, 13 January 2013, 11:35
> Subject: Re: [libreoffice-users] Embedded Java
>
> On 01/13/2013 03:28 AM, Jay Lozier wrote:
> > On 01/12/2013 10:42 PM, George R. Crossman wrote:
> > > I'm seeing warnings saying that one should disable embedded Java to avoid hacking. Does this 
> > > apply to linux users? If so, what is the procedure?
> > >
> > > George Crossman
> > George,
> >
> > Yes, all OS's are affected because Java is cross platform. I am not sure if any of the previous 
> > version are affected or if only the current release is affected.
> >
> > The primary concern is Java applets run by your browser. The vulnerability allows a zero-day 
> > browser exploit that as yet is not patched by Oracle. The primary concerns I have heard of are 
> > installation of keyloggers and installation of ransomware. I would assume the malware will use 
> > the JVM to run and would be cross platform. AFAIK, Oracle has not yet announced when a patch 
> > will be available.
> >
> > It is highly recommended that Java be disabled in your browser(s) regardless of the version. 
> > Note JavaScript is not affected, it is entirely different than Java. Currently this warning does 
> > not cover non-browser applications that use the JVM.
>          If you use Firefox and update your operating system regularly, Firefox should have 
> already disabled the  JVM add-on. Check Tools -> Add-ons for it if you use Firefox. Also check the 
> Help section for specific information about how to disable Java in your browser.
>
> --Dan
>
> -- For unsubscribe instructions e-mail to: users+help@global.libreoffice.org
> Problems? http://www.libreoffice.org/get-help/mailing-lists/how-to-unsubscribe/
> Posting guidelines + more: http://wiki.documentfoundation.org/Netiquette
> List archive: http://listarchives.libreoffice.org/global/users/
> All messages sent to this list will be publicly archived and cannot be deleted
-- 
For unsubscribe instructions e-mail to: users+help@global.libreoffice.org
Problems? http://www.libreoffice.org/get-help/mailing-lists/how-to-unsubscribe/
Posting guidelines + more: http://wiki.documentfoundation.org/Netiquette
List archive: http://listarchives.libreoffice.org/global/users/
All messages sent to this list will be publicly archived and cannot be deleted