Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




223 posts

Master Geek
+1 received by user: 25

Trusted
Subscriber

Topic # 113935 1-Feb-2013 22:21 Send private message

http://www.stuff.co.nz/technology/gadgets/8251915/Apple-blocks-Java-on-Macs-due-to-vulnerabilities

This is why I run Firefox - at least that way, *I* can make informed decisions and stay in control of what *I* want *MY* computer to run...

Firefox at least offers me the option to run a Java app if I want to; the Safari block seems to have no override option.

I notice that someone has commented on the Stuff article:

Wait, let me get this right. Apple has the power to tell all Mac's what software they can and can't run? So Apple could disable all software from their competitors (i.e. Microsoft, Google, etc)? That's outrageous!

I'm fairly sure that is over-simplifying the issue; hopefully, it's just a Safari plug-in block (which Firefox can also do); but I can appreciate the sentiment...

Create new topic

gzt

4180 posts

Uber Geek
+1 received by user: 159

Subscriber

  Reply # 754670 2-Feb-2013 08:42 Send private message

From the average user point of view this is a good decision. There are severe vulnerabilities here which have been clearly demonstrated. Average user does not want to be reading security all day and implementing mitigation every time something like this comes up.

3686 posts

Uber Geek
+1 received by user: 125

Trusted
Subscriber

  Reply # 754681 2-Feb-2013 09:00 Send private message

I agree, it's horrendously bad for Apple to be able to block legitimate apps (using a feature that was advertised as anti-malware) with no notification and no knowledge base article on how to re-enable them. I've disabled Xprotect updates on my systems after what happened last time, but if the blacklist has already been updated then this doesn't re-enable the affected apps. The only solution that I'm aware of is to hand-edit the blacklist file.

Edit: What on earth?! As mentioned above I disabled the blacklist updates but just tried to use a Java-based site and it has *STILL BLOCKED IT*. What the hell is the point of having an option if the system ignores it?!



223 posts

Master Geek
+1 received by user: 25

Trusted
Subscriber

  Reply # 754688 2-Feb-2013 09:16 Send private message

gzt: From the average user point of view this is a good decision. There are severe vulnerabilities here which have been clearly demonstrated. Average user does not want to be reading security all day and implementing mitigation every time something like this comes up.


Agree entirely - my point, however, is that Apple have (one again!) provided NO CHOICE over this block.  In my opinion, there should be an override - a "yes, I'm aware of the risk, let me do it anyway" option; I don't know if there is a "whitelist" for trusted websites, which would be absolutely 100% required in the corporate world.  Providing "auto stupid-user safety" is good, but so is providing "power-user control"; Apple do the first well, pity they consistently ignore the second.


3686 posts

Uber Geek
+1 received by user: 125

Trusted
Subscriber

  Reply # 754705 2-Feb-2013 09:46 Send private message

Java Update 13 re-enables the plugin, but I'm still trying to find out why it got disabled in the first place when my system was set to not automatically install security updates.

Create new topic




Twitter »
Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:




News »

Trending now »
Hot discussions in our forums right now:

2 x PS4s to give away. Geekzone members only.
Created by BigPipeNZ, last reply by jurax04 on 29-Jul-2014 23:10 (54 replies)
Pages... 2 3 4


"keyless" keys - questions
Created by joker97, last reply by Gilco2 on 29-Jul-2014 21:11 (26 replies)
Pages... 2


Logitech K400r HTPC Cordless Keyboard Half Price
Created by Dynamic, last reply by Blanch on 28-Jul-2014 22:16 (25 replies)
Pages... 2


VF, why you lie to me?
Created by kenkeniff, last reply by kenkeniff on 29-Jul-2014 14:35 (46 replies)
Pages... 2 3 4


Dick Smith in Continual Sale Mode
Created by Dynamic, last reply by eXDee on 29-Jul-2014 19:23 (65 replies)
Pages... 3 4 5


Checking UHF aerial is working
Created by OnceBitten, last reply by B1GGLZ on 28-Jul-2014 21:49 (21 replies)
Pages... 2


2010 Honda Jazz, Suzuki Swift - which has higher maintenance cost?
Created by joker97, last reply by TimA on 30-Jul-2014 00:26 (61 replies)
Pages... 3 4 5


Hierarchy of a mistake: Gerry Brownlee
Created by joker97, last reply by DonGould on 29-Jul-2014 21:57 (93 replies)
Pages... 5 6 7



Geekzone Live »
Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.