[Mageia-dev] Java-Policy first draft published

Remy CLOUARD shikamaru at mandriva.org
Sat Jan 22 09:48:39 CET 2011


On Fri, Jan 21, 2011 at 04:47:28PM +0100, Thierry Vignaud wrote:
> On 21 January 2011 16:14, Michael scherer <misc at zarb.org> wrote:
> >> And they never though about security...
> >
> > Security is not a problem , it is java, no null pointer exception /o\.
> >
> > But that's not only security, there is simply bugs that happen, and API
> > problem ( that IMHO happens more often than security issue ).
> 
> I've too often see java apps becoming very unstable once they got a
> null pointer exception until one restarts tomcat/jboss/whatever...
> 
> More seriously when I was speaking about "though about security",
> I meant people should got shot (twice) if they are OK with
> downloading a binary from some random site w/o any checks...
See what this can lead to…

http://www.theregister.co.uk/2011/01/19/mac_linux_bot_vulnerabilities/

Regards,
-- 
Rémy CLOUARD
() ascii ribbon campaign - against html e-mail
/\ www.asciiribbon.org - against proprietary attachments


More information about the Mageia-dev mailing list