Agreed. I have a vendor site that requires a certificate install that is browser specific. I use Firefox so that is where the certificate is installed. To access their secure website, and run an IBM 3270 emulation app via my web browser, the JVM needs to be running. There isn't an option or page displayed where I can "Click to Play" or activate. The app simply sees that the JVM isn't running within the browser. I have subscribers attempting to get prescriptions but waiting for my override that I can only do through the vendor's secure web site.
I appreciate your concern for the general populous via your blocking methodology but you need to provide a way to unblock for specific sites that can be done prior to visiting the site.
So, who will be first? Oracle with a patch or Mozilla with better flexibility for those of us who understand the risk but still need to do actual work?