Mozilla adds all recent Java versions to blocklist

[Exterminator]

Java received some bad press in recent months due security vulnerabilities that were discovered by security researchers more or less on a constant basis. What this basically means is that Java use on the web was not really safe in that period, and that upgrading Java regularly only resolved some of the issues but not all that were discovered in that time period.

The situation today is not that different. Even the latest Java version, which is Java Plugin 7 update 15 for Linux, Windows and Mac OS X, is vulnerable to certain forms of attacks.

My recommendation back in 2012 was to disable Java in the browser unless you need it for important site functionality. If that is the case, my recommendation was to either install NoScript in Firefox or make use of Click To Play to prevent the automatic loading of Java contents on websites you visit, or use a special browser only for visiting those websites.

Mozilla started to make use of its blocklist to protect users of the Firefox web browser from falling pray to attacks or running insecure versions of Java while using the Internet browser.

The company added all recent versions of Java to its list of blocked add-ons. Software listed here is automatically disabled in the browser unless users explicitly activate it again.

Read More Here

 

[Jack]

That's a really great idea actually, finally something that wasn't done after Google did it!

With this in mind, I can say that I have seen Internet Explorer and Google, asking its users if they want to enable add-ons that were installed by third party software, or are known to cause issues. However didn't see Google or Microsoft disabling the Java addons.

 

[Littlebits]

If you disable Java content in the Java Control Panel, it doesn't even show up in your browser's add-ons.

Thanks.

 

[McLovin]

If you disable Java content in the Java Control Panel, it doesn't even show up in your browser's add-ons.

Thanks.

That's something that I've already done.

Good to see that Mozilla is doing something to help stop all the Java exploits.

 

[PurpleArmor]

Although I don't have Java installed, it's good to know that Mozilla is protecting its users.

 

[Exterminator]

I also have it disabled in all browsers.I think given the history of Java and the recent exploits in 2013 that all browsers should follow Firefox.Since it appears that Java has no answer.

 

[softwareFREEk]

Java received some bad press in recent months due security vulnerabilities that were discovered by security researchers more or less on a constant basis. What this basically means is that Java use on the web was not really safe in that period, and that upgrading Java regularly only resolved some of the issues but not all that were discovered in that time period.

The situation today is not that different. Even the latest Java version, which is Java Plugin 7 update 15 for Linux, Windows and Mac OS X, is vulnerable to certain forms of attacks.

My recommendation back in 2012 was to disable Java in the browser unless you need it for important site functionality. If that is the case, my recommendation was to either install NoScript in Firefox or make use of Click To Play to prevent the automatic loading of Java contents on websites you visit, or use a special browser only for visiting those websites.

Mozilla started to make use of its blocklist to protect users of the Firefox web browser from falling pray to attacks or running insecure versions of Java while using the Internet browser.

The company added all recent versions of Java to its list of blocked add-ons. Software listed here is automatically disabled in the browser unless users explicitly activate it again.

Read More Here

First good news that I have read about Java in quite some time