Follow Slashdot blog updates by subscribing to our blog RSS feed


Forgot your password?
Back for a limited time - Get 15% off sitewide on Slashdot Deals with coupon code "BLACKFRIDAY" (some exclusions apply)". ×

Security Expert Says Java Vulnerability Could Take Years To Fix, Despite Patch 320

An anonymous reader writes "After the Department of Homeland Security's US-CERT warned users to disable Java to stop hackers from taking control of users' machines, Oracle issued an emergency patch on Sunday. However, HD Moore, chief security officer of Rapid7, said it could take two years for Oracle to fix all the security flaws in the version of Java used to surf the web; that timeframe doesn't count any additional Java exploits discovered in the future. 'The safest thing to do at this point is just assume that Java is always going to be vulnerable,' Moore said."

OS X Notifier App Growl Goes Closed Source 270

First time accepted submitter para_droid writes "Version 1.3 of the popular open source notification system for Mac OS X, Growl has surprised its users by going closed-source and only available for purchase on the Mac App Store. Any users who provide links to bugfixes and source for the previous version 1.2 are being banned from the discussion group, and their messages deleted. Could it be time for the community to create an OpenGrowl fork?" The linked post above about bugfixes and source ends "Hopefully the Growl 1.3 branch from the official Growl maintainers will eventually become open source again and get straightened out so that it works for most users, but if it doesn't, a fork of the project will be able to provide a working Growl to Mac users."

Everybody needs a little love sometime; stop hacking and fall in love!