[ImageJ-devel] What about this huge Java security issue?? How do we keep ImageJ users both safe and satisfied with a Java platform?

Mohler,William WMohler at NEURON.UCHC.EDU
Sat Jan 12 07:35:15 CST 2013


Yes, thanks.  What I'm worried about is society's tendencies to be blind to sensible approaches.  Eg, what is the likelihood that oracle does something drastic with Java as a result of the scare?  Maybe this situation is more run-of-the-mill than my gut is feeling right now.

Bill




Jason Swedlow <j.r.swedlow at dundee.ac.uk> wrote:

Hi Bill-

Curtis and Johannes suggested very sensible approaches.

I believe this is what you are referring to, and this clearly says to disable Java in your web browser:

http://www.kb.cert.org/vuls/id/625617

Cheers,

Jason

--------------------
Centre for Gene Regulation & Expression | Open Microscopy Environment | University of Dundee

Phone:  +44 (0) 1382 385819
email: j.swedlow at dundee.ac.uk<mailto:j.swedlow at dundee.ac.uk>

Web: http://www.lifesci.dundee.ac.uk/gre/staff/jason-swedlow
Open Microscopy Environment: http://openmicroscopy.org<http://openmicroscopy.org/>


From: <Mohler>, William <WMohler at NEURON.UCHC.EDU<mailto:WMohler at NEURON.UCHC.EDU>>
Date: Friday, 11 January 2013 20:41
To: Jason Swedlow <j.r.swedlow at dundee.ac.uk<mailto:j.r.swedlow at dundee.ac.uk>>, "imagej-devel at imagej.net<mailto:imagej-devel at imagej.net>" <imagej-devel at imagej.net<mailto:imagej-devel at imagej.net>>
Subject: Re: [ImageJ-devel] What about this huge Java security issue?? How do we keep ImageJ users both safe and satisfied with a Java platform?

I'm hoping just what you're thinking.  But the press here is telling people to "uninstall java" as the only certain way to avoid having their systems hacked.  This is now backed by an announcement by US Dept of Homeland Security that there is no other recourse...  Not easy stuff to deal with, right or wrong.



Jason Swedlow <j.r.swedlow at dundee.ac.uk<mailto:j.r.swedlow at dundee.ac.uk>> wrote:

Bill-

Still trying to verify this, but this is about browser plug-ins, which you can turn off.

http://developers.slashdot.org/story/13/01/10/1540202/java-zero-day-vulnerability-rolled-into-exploit-packs

Cheers,

Jason

--------------------
Centre for Gene Regulation & Expression | Open Microscopy Environment | University of Dundee

Phone:  +44 (0) 1382 385819
email: j.swedlow at dundee.ac.uk<mailto:j.swedlow at dundee.ac.uk><mailto:j.swedlow at dundee.ac.uk>

Web: http://www.lifesci.dundee.ac.uk/gre/staff/jason-swedlow
Open Microscopy Environment: http://openmicroscopy.org<http://openmicroscopy.org/>


From: <Mohler>, William <WMohler at NEURON.UCHC.EDU<mailto:WMohler at NEURON.UCHC.EDU><mailto:WMohler at NEURON.UCHC.EDU>>
Date: Friday, 11 January 2013 20:15
To: "imagej-devel at imagej.net<mailto:imagej-devel at imagej.net><mailto:imagej-devel at imagej.net>" <imagej-devel at imagej.net<mailto:imagej-devel at imagej.net><mailto:imagej-devel at imagej.net>>
Subject: [ImageJ-devel] What about this huge Java security issue?? How do we keep ImageJ users both safe and satisfied with a Java platform?


Sent from my Verizon Wireless 4G LTE DROID
_______________________________________________
ImageJ-devel mailing list
ImageJ-devel at imagej.net<mailto:ImageJ-devel at imagej.net><mailto:ImageJ-devel at imagej.net>
http://imagej.net/mailman/listinfo/imagej-devel



The University of Dundee is a registered Scottish Charity, No: SC015096



The University of Dundee is a registered Scottish Charity, No: SC015096



More information about the ImageJ-devel mailing list