Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.



285 posts

Ultimate Geek
+1 received by user: 64

Trusted
Subscriber

Topic # 113935 1-Feb-2013 22:21 Send private message

http://www.stuff.co.nz/technology/gadgets/8251915/Apple-blocks-Java-on-Macs-due-to-vulnerabilities

This is why I run Firefox - at least that way, *I* can make informed decisions and stay in control of what *I* want *MY* computer to run...

Firefox at least offers me the option to run a Java app if I want to; the Safari block seems to have no override option.

I notice that someone has commented on the Stuff article:

Wait, let me get this right. Apple has the power to tell all Mac's what software they can and can't run? So Apple could disable all software from their competitors (i.e. Microsoft, Google, etc)? That's outrageous!

I'm fairly sure that is over-simplifying the issue; hopefully, it's just a Safari plug-in block (which Firefox can also do); but I can appreciate the sentiment...

Create new topic

gzt

5026 posts

Uber Geek
+1 received by user: 323

Subscriber

  Reply # 754670 2-Feb-2013 08:42 Send private message

From the average user point of view this is a good decision. There are severe vulnerabilities here which have been clearly demonstrated. Average user does not want to be reading security all day and implementing mitigation every time something like this comes up.

4233 posts

Uber Geek
+1 received by user: 251

Trusted
Subscriber

  Reply # 754681 2-Feb-2013 09:00 Send private message

I agree, it's horrendously bad for Apple to be able to block legitimate apps (using a feature that was advertised as anti-malware) with no notification and no knowledge base article on how to re-enable them. I've disabled Xprotect updates on my systems after what happened last time, but if the blacklist has already been updated then this doesn't re-enable the affected apps. The only solution that I'm aware of is to hand-edit the blacklist file.

Edit: What on earth?! As mentioned above I disabled the blacklist updates but just tried to use a Java-based site and it has *STILL BLOCKED IT*. What the hell is the point of having an option if the system ignores it?!



285 posts

Ultimate Geek
+1 received by user: 64

Trusted
Subscriber

  Reply # 754688 2-Feb-2013 09:16 Send private message

gzt: From the average user point of view this is a good decision. There are severe vulnerabilities here which have been clearly demonstrated. Average user does not want to be reading security all day and implementing mitigation every time something like this comes up.


Agree entirely - my point, however, is that Apple have (one again!) provided NO CHOICE over this block.  In my opinion, there should be an override - a "yes, I'm aware of the risk, let me do it anyway" option; I don't know if there is a "whitelist" for trusted websites, which would be absolutely 100% required in the corporate world.  Providing "auto stupid-user safety" is good, but so is providing "power-user control"; Apple do the first well, pity they consistently ignore the second.


4233 posts

Uber Geek
+1 received by user: 251

Trusted
Subscriber

  Reply # 754705 2-Feb-2013 09:46 Send private message

Java Update 13 re-enables the plugin, but I'm still trying to find out why it got disabled in the first place when my system was set to not automatically install security updates.

Create new topic




Twitter »
Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





Trending now »

Hot discussions in our forums right now:

April Fools!
Created by BlueShift, last reply by thecatsgoolies on 1-Apr-2015 16:22 (37 replies)
Pages... 2 3


Semble SIM: compatible handsets
Created by DrDee, last reply by markl on 1-Apr-2015 17:39 (56 replies)
Pages... 2 3 4


Is a deck hard to build?
Created by lissie, last reply by joker97 on 1-Apr-2015 17:34 (26 replies)
Pages... 2


Vodafone retention call- A Joke or April fool
Created by geekbhaji, last reply by mattwnz on 1-Apr-2015 14:17 (26 replies)
Pages... 2


Jeremy Clarkson reported as being sacked from top gear
Created by KiwiNZ, last reply by DravidDavid on 1-Apr-2015 17:37 (184 replies)
Pages... 11 12 13


Mighty Ape Easter Egg hunt 2015.
Created by daesha247, last reply by ThePlague on 1-Apr-2015 15:11 (22 replies)
Pages... 2


New Lightbox website
Created by Lightbox, last reply by dclegg on 1-Apr-2015 16:54 (19 replies)
Pages... 2


Surface 3: anyone interested
Created by freitasm, last reply by lxsw20 on 1-Apr-2015 16:47 (19 replies)
Pages... 2



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.