Good Sam Community

Writing Android apps is very different than what this thread is talking about. Native Android apps are written in Java, but they're not the concern - this thread is talking about disabling/removing Java from web browsers on a PC.

Also, Java isn't used to write scripts, it creates programs. Using the word script may confuse it with Javascript and the only similarity between Java and Javascript are the first 4 letters.

edited
Content not relavant

Everyone needs to keep in mind Java and Javascript are 2 entirely different things.

The vulnerabilities that they are aware of have been fixed. There will be more found.

Java is huge as a server-side technology so it will undoubtedly be around past 2016. On the client side browser its usefulness has been declining for the better part of a decade as Javascript has increased its abilities and now HTML5 is filling in the few remaining voids that Javascript was not able to fill.

Java in the online education market is still very pervasive, as well. In time I think Java in the browser will disappear entirely and it can't happen too soon, IMO.

The vulnerabilities have been fixed.

There aren't many websites that require java other than games. Most are used within businesses.

Java was an easy way for a programmer to build interactive applications that could run on their own websites without having special permissions from a site and grant permissions to users. There are still some sites that use java and if you land on one you can easily activate if you feel safe in doing so with browser options. HTML 5 will replace some/most of this need.

There must be someone using java as Oracle has published plans for releases out thru 2016.

I completely uninstalled Java about 6 months ago and haven't had any issues.

wittmeba wrote:

bwanshoom, I have high regards for your post. You have knowledge I need to learn. Which update/revision and please point me to something about the 51 security issues. Id like to better understand the concerns.

Here are the release notes for Java 7 u45, the most recent version.

And here are the associated CVEs (Common Vulnerabilities and Exposures) which are a standard way of enumerating security issues in the IT industry.

And here is the Wikipedia entry on Java 7 versions which show over 200 security fixes in the last 12 months.

A network testing site I use on occasion requires JAVA, but also do partake an online game now and then.

wittmeba wrote:

Do you activate every instance of Adobe Flash? I don't. If you dont trust a site you should not activate any programs from that site.

Almost all games are developed with Java.

As far as flash goes, yes I do block all flash. I use flash block in my browser. The reason I do this is I have a 5 Gig cap on Internet data, I do not want to wait for whatever is in flash to load or I just want to read an article. If I want to see the flash content I allow it.

Here is the article I read a year ago that convinced me to dump Java.
You don't need Java

bwanshoom wrote:
Remember - the same people that coded in the "Alway Activate, Never Activate" are the same ones who developed the original security-deficient software in the first place so don't be too trusting.

What?!?! First, why would anyone want to activate Java if they don't need it?

The options (Always Activate, Never activate, Ask to activate are in the browser. I dont believe they have anything to do with the Java Virtual Machine or Adobe which offers the same options.

Campfire Time:
Do you activate every instance of Adobe Flash? I don't. If you dont trust a site you should not activate any programs from that site.

Almost all games are developed with Java.

bwanshoom, I have high regards for your post. You have knowledge I need to learn. Which update/revision and please point me to something about the 51 security issues. Id like to better understand the concerns.

Firefox has a handy extension QuickJava which installs click-able toggles to enable/disable common functions or plugins such as JAVA. Been using it for many years. You can guess which one I have disabled indicated in red?

wittmeba wrote:
Java is fine. It is now implemented like Adobe Flash. With Firefox you have the same options to Always Activate, Never Activate or Ask to Activate which gives you the option when visiting a page with a Java Applet to use on demand. You have control.

There aren't to many Java sites but if you are a gamer you will likely need Java activated.

Sure, and then you choose to activate it not knowing that the content you want to use is infected. Now you are toast.

No, JAVA is not fine. Adobe Flash is not fine. Both are serious security risks and are exploited far more than Windows vulnerabilities.

wittmeba wrote:
Java is fine. It is now implemented like Adobe Flash. With Firefox you have the same options to Always Activate, Never Activate or Ask to Activate which gives you the option when visiting a page with a Java Applet to use on demand. You have control.

There aren't to many Java sites but if you are a gamer you will likely need Java activated.

There continue to be so many security issues found in Java (51 in the most recent update), including in the on-demand activation area that you mention that it's not worth it unless you *really* require it. Remember - the same people that coded in the "Alway Activate, Never Activate" are the same ones who developed the original security-deficient software in the first place so don't be too trusting.