Sun Java security updates/ Windows software update rant…



Incidents.org has the story on Sun’s release of new versions of the Java Runtime Environment and the Java SDK to fix some remote security vulnerabilities.

These security vulnerabilities could allow malicious, untrusted code to compromise a user’s computer. Sun recommends that users update to the newest version of the SDK and JRE available at http://java.sun.com .

Secunia advisory


It would be nice, REAL nice if there was SOME sort of unified, certifiable trusted repository for companies to upload security fixes to for Windows software. (Browser plugins, media players, etc. etc. etc.) Think about it. Linux distributions usually ship more than an OS, they ship the operating system an office suite, browser plugins, games, educational software etc. But they also provide a way to get security updates for any of the above if applicable. Usually from a central updates repository (or a mirror.)

Wouldn’t it be nice IF there was some sort of windowsupdate site that would allow you to choose (or scan for) different software channels to update. Instead of just Microsoft software as the current windows update does… Say it would scan to see if you needed any updates from the Adobe channel, or the Sun channel, or the Mozilla channel. The big problem is that most of these are Microsoft’s competitors, so it would have to be a third party site, and license restrictions would likely prohibit the redistribution.

What if you didn’t redistribute though? What if you merely had a website that you could select (or have a software download to scan) update sources (adobe, macromedia, real networks, etc.) and updates could be automatically selected for you. Maybe even offer the choice of security updates only or major updates. Then the site could pull the download directly from the third party (adobe/macromedia/whoever) site. I don’t see HOW any publisher in their right mind wouldn’t want something like this to work. Security updates for EVERY level of software seem to be an essential part of keeping a system secure and with software from multiple vendors it get’s to be a nightmare.

I guess I’m just wondering how joe user is supposed to be expected to keep up with all this? Corporations have money to spend on IT departments have them control what’s deployed to desktops updates there can be done site wide by editing a login profile. How does somebody with 45 different apps preinstalled on their machine and they’re not quite sure what any of them do deal with this?

I have seen some recent improvements. I’ve seen one software installer that has an autoupdate feature that checks for updates for all software packaged with that installer. Not a bad idea, not unified though – what if you had one running in the background all the time for all the different software packagers… (?) anyway…. done ranting…. I guess that was one reason I was glad to hear of the Mozilla-Firefox 1.5 feature of auto-updates…

Related Posts

Blog Traffic Exchange Related Posts
  • Microsoft to bundle anti-spyware with vista Well it shouldn't come as a big surprise, but Microsoft is expected to bundle their anti-spyware product (which will be renamed windows defender) with Vista when the next version of the OS ships. It's probably not a big surprise given the headaches that people have with spyware and the potential......
  • Sony's DRM song sounding worse by the day Well, let's see.... I didn't cover the original story since I was covered up with other work, but let me take a stab at starting from the beginning before I tell you how it's gotten worse. It seems that SONY is concerned about piracy and computers being the tools of......
  • So who is behind Windows Police Pro Virus / Rogue Security Software? As I've seen the continuing FLOOD of searches for some way to Remove Windows Police Pro, I've been starting to wonder at the who is behind this particular piece of junk software. These programs aren't written by your average ordinary virus writer, there is really too much spit and polish......
Blog Traffic Exchange Related Websites
  • Nut Web Site Instantly Assured SEO or search engine marketing techniques are relating to the art of traffic generation, on earth of internet affiliate marketing there is a renowned saying inidicating that lots of targeted traffic equals money; in all likelihood that most SEOs know this is now true. Internet ventures are frequently a failure......
  • Repairing Damaged Drywall Sheets of drywall are generally quite strong, but they are only made out of gypsum plaster that has been pressed between two sheets of thick paper. The thing that ensures rigidity is the kiln drying process. The basic construction of the drywall allows for it to be inexpensive as well......
  • Looking for a Logo I've been thinking about getting a professionally designed logo for my blog and feature article site. I am curious what experience anyone has with companies such as Logoworks, Logocare, or similar. I frequent the financial blogs out there and wonder how many have designed their own, vs getting one from......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Leave a Reply

You must be logged in to post a comment.


Switch to our mobile site