Giveaway of the Day Forums

1. 

   Terri218
   Member

   I know it used to be recommended that this be disabled because of vulnerabilities especially with Chrome. Is that still the case or is it safe now?

   Thanks.

   Posted 8 years ago #
2. 

   Dragonlair
   Member

   Terri,

   I have no idea. All I know is I have not had Java installed since I got this machine back in 2009. I don't have it installed on either my desktop nor my laptop and I don't miss it.

   I did have to change ONE software (my PDF split/merge software) because it was dependent upon java.

   I have Javascript (heavily used in websites) but not java.

   I think most of the problems were because a lot of businesses would not keep it up to date and so kept getting zapped. My humble opinion is -- unless you have some software that you really really want or need that requires it -- it's safer to do without.

   That's true with any software for that matter. :)

   Posted 8 years ago #
3. 

   ChrisS
   Administrator

   The problem with Java is that it's ubiquitous. It's installed on machines in every part of the globe, and probably on some hurtling through space, and not everybody keeps their system up-to-date. Hackers are generally lazy and look for easy targets and Java has known security holes. Those holes can be easily closed with the updates but hackers aren't the only lazy people in the equation.

   From Jan 2016:
   

   Oracle Pushes Java Fix: Patch It or Pitch It
   Oracle has shipped an update for its Java software that fixes at least eight critical security holes. If you have an affirmative use for Java, please update to the latest version; if you’re not sure why you have Java installed, it’s high time to remove the program once and for all.

   If you really need and use Java for specific Web sites or applications, take a few minutes to update this software. Otherwise, seriously consider removing Java altogether. I have long urged end users to junk Java unless they have a specific use for it (this advice does not scale for businesses, which often have legacy and custom applications that rely on Java). This widely installed and powerful program is riddled with security holes, and is a top target of malware writers and miscreants.

   If you use Java then you should also follow these recommendations from Oracle: Tips for using Java securely

   Posted 8 years ago #
4. 

   Terri218
   Member

   I want to try an online game that requires Java but have been hesitant to install it. Do you think I should? The game is also available on Steam but I don't see where they let you try it first.

   Posted 8 years ago #
5. 

   Dragonlair
   Member

   I don't play online games so I'm not the one to ask. However, if it's just for an online game, I'm not sure i would bother. There are so many games available -- often many very much like one you really want that you're more likely to be safe by choosing another.

   Posted 8 years ago #
6. 

   Terri218
   Member

   If you buy a game on Steam and it doesn't play, will they give you a refund? If it needs Java through the website, will it need Java through Steam?

   Posted 8 years ago #
7. 

   ChrisS
   Administrator

   I want to try an online game that requires Java but have been hesitant to install it. Do you think I should?

   
   It really depends on whether or not you trust the site that you'd be playing the game from. Even if you follow Oracle's recommended tips you're still left with question "do I let the content from this site run?". If I tried the website I'd download the latest definitions for my malware/spyware/anti-virus, backup my system, install the latest Java version, follow Oracle's recommendations, play the game for a bit, and then run security scans with all my security software.

   If you buy a game on Steam and it doesn't play, will they give you a refund?

   
   Yes, you can get a refund within a two-week period provided you didn't play the game for more than 2 hours. See: Buy a game you hate on Steam? Now you can finally get a refund – here’s how

   If it needs Java through the website, will it need Java through Steam?

   
   If the game needs Java then you'll need to have Java installed regardless of which route you take (Steam or website). You might search on the name of the game to determine if it's Java based. If it's just a requirement of the website I'd avoid that website.

   Posted 8 years ago #
8. 

   mikiem2
   Moderator

   From Jan 2016: ... Oracle has shipped an update for its Java software that fixes at least eight critical security holes.

   threatpost[.]com/oracle-patches-record-276-vulnerabilities-with-july-critical-patch-update/119373/

   The quarterly patch update resolves vulnerabilities in 84 different products, including Oracle Database Server, Oracle Fusion Middleware, and Oracle’s E-Business Suite to name a few. The number of fixes exceeds the previous all time high, 248 patches, pushed by Oracle in January and marks more than double the amount of vulnerabilities addressed by the company in its last CPU in April.

   Ouch

   Posted 8 years ago #
9. 

   Terri218
   Member

   Thanks all. mikiem2, that makes me feel it's safe to install it now but it certainly wasn't in the past?

   Posted 8 years ago #

RSS feed for this topic

Reply

You must log in to post.