Recent Posts
But, if you go to the developer oriented download site:I downloaded my offline version directly from Oracle's site at http://www.java.com/.../download/manual.jsp[/url] , why would that be any different from the technetwork page?
http://www.oracle.com/technetwork/java/javase/downloads/index.html
and choose the JRE download there, you'll get a version that doesn't package the toolbar at all.-mwb1100 (January 16, 2013, 02:29 AM)
That's really strange! WTF?I believe the proper patch there is simply to delete them.I think your right. I have it installed just in case I need it, but have it disabled in the browser...-Renegade (January 14, 2013, 09:16 PM)-Tinman57 (January 15, 2013, 06:26 PM)
did I miss something? - what's the 'it' there ("have it disabled in the browser...")-tomos (January 16, 2013, 03:10 AM)
I've been known to do this before. Just ask Mouser..... 
What good are hacking laws if the worst culprits are governments?LOL! I was just about to post this myself and saw you beat me to it. You can also read about it here:-Renegade (January 15, 2013, 07:47 PM)
Oracle this week released an update for its widely used Java software, fixing a zero-day vulnerability that was being actively exploited to install malware via drive-by downloads.
But before you begin patting Oracle on the back for its quick response, note two things about that update:
•It might not actually fix the underlying security issues.
•Along with the must-install security update, Oracle continues to include crapware.
Yes, adding insult to injury, Oracle is actually making money and cheapening your web browsing experience by automatically installing the Ask toolbar, which in turn tries to change your default search engine and home page.
I have no idea how much money Ask pays and Oracle collects off this seamy, sleazy practice. I can only assume it's enough to justify selling out Java users.
I believe the proper patch there is simply to delete them.I think your right. I have it installed just in case I need it, but have it disabled in the browser...-Renegade (January 14, 2013, 09:16 PM)
Summary: An out-of-band update will be released today to fix a zero-day vulnerability in Internet Explorer, versions 6, 7 and 8, which will prevent hackers from exploiting a hole that could allow the remote execution of malicious code.
I've considered moving to Sumatra, though, since it's opensource and even more lightweight and fast than foxit. It had some stability issues some years back, but I've been using it for primary PDF viewer on my work laptop for a while, and it seems to work pretty well nowadays...
Anyway, as mouser says, thanks for posting the security tips - it's good to get some focus on these things for people who don't follow security-related blogs & RSS feeds-f0dder (January 14, 2013, 06:20 AM)
A new analysis of the American Freshman Survey, which has accumulated data for the past 47 years from 9 million young adults, reveals that college students are more likely than ever to call themselves gifted and driven to succeed, even though their test scores and time spent studying are decreasing.
Psychologist Jean Twenge, the lead author of the analysis, is also the author of a study showing that the tendency toward narcissism in students is up 30 percent in the last thirty-odd years.
This data is not unexpected. I have been writing a great deal over the past few years about the toxic psychological impact of media and technology on children, adolescents and young adults, particularly as it regards turning them into faux celebrities—the equivalent of lead actors in their own fictionalized life stories.
I wonder if the standalone is exploitable as well?
I avoid PDF browser plugins like the plague, both because of exploitability (though Adobe's is the only one I think is likely to be mass-targeted?), but also because I really hate the UX of in-browser PDF.
Having the standalone exploitable would also be bad, but obviously in-browser is the main issue, drive-bys and such. If you're at a point where you're consciously downloading a PDF, if it has malware then you're probably falling prey to some pretty targeted attack...-f0dder (January 13, 2013, 06:44 PM)
I'd still do her......-Renegade (January 11, 2013, 10:04 PM)-Tinman57 (January 12, 2013, 06:55 PM)
Pretty much the bluntest thing I have ever read on DC...-Stephen66515 (January 13, 2013, 06:35 PM)
Foxit Reader, a PDF viewer application often used as an alternative to the more popular Adobe Reader, contains a critical vulnerability in its browser plug-in component that can be exploited by attackers to execute arbitrary code on computers.
Aluminum Foil vs Oven Liner
Don't use aluminum foil as oven liner
"The big name in foil — Reynolds — specifically advises against lining the bottom of ovens with foil."-hamradio (January 13, 2013, 04:46 PM)
Online petition seeks to make DDoS 'legal form of protesting'
The creator of the petition is also requesting the US government to immediately release those jailed for DDoS attacks and have these crimes removed from their records.
Today's gadget, an oven liner:
(see attachment in previous post)
http://www.amazon.co...-Liner/dp/B000GLNV8Q
What it does:
Sits at the bottom of your oven and anything that would normally drip onto the bottom of your oven drips onto it. Can be easily removed and cleaned and reused.-mouser (January 12, 2013, 03:37 PM)
Well, well, well, what a surprise! (NOT)
Now I wonder who could have put Nokia up to this naughty thing with their handset browsers, and how many other phones have the same "security" feature?
Hmm, tricky. Probably a criminal gang, or something?-IainB (January 12, 2013, 06:39 PM)
I'd still do her......-Renegade (January 11, 2013, 10:04 PM)
+1 for cmpm - legislation shouldn't be for sale.The U.S. has the finest government that money can buy.....-Renegade (January 10, 2013, 11:17 PM)
Man, you guys sure know a lot about this stuff. Now I feel inadequateI only know just enough to be dangerous..
-superboyac (January 10, 2013, 08:47 AM)
