Java received some bad press in recent months due security vulnerabilities that were discovered by security researchers more or less on a constant basis. What this basically means is that Java use on the web was not really safe in that period, and that upgrading Java regularly only resolved some of the issues but not all that were discovered in that time period.
The situation today is not that different. Even the latest Java version, which is Java Plugin 7 update 15 for Linux, Windows and Mac OS X, is vulnerable to certain forms of attacks.
My recommendation back in 2012 was to disable Java in the browser unless you need it for important site functionality. If that is the case, my recommendation was to either install NoScript in Firefox or make use of Click To Play to prevent the automatic loading of Java contents on websites you visit, or use a special browser only for visiting those websites.
Mozilla started to make use of its blocklist to protect users of the Firefox web browser from falling pray to attacks or running insecure versions of Java while using the Internet browser.
The company added all recent versions of Java to its list of blocked add-ons. Software listed here is automatically disabled in the browser unless users explicitly activate it again.
While it is possible to enable Java again by visiting the add-ons manager in the browser, by loading about:addons, it is suggested not to do so. If you need Java your best option to deal with the situation is to enable click to play in Firefox which will prevent Java contents from being loaded automatically on the web.
If you are using a different web browser, it is highly recommended to disable Java in that browser as well. If you can't, try installing an extension that prevents Java from being loaded automatically, or using a feature like click to play instead.
The following versions of Java have been blocked by Mozilla on February 25, 2013:
In addition, Flash Player plugin versions from 10.3.183.19 to 10.3.183.42 have been switched to click to play automatically. While they still work, they only activate when you accept the prompt in the browser to do so.
Advertising revenue is falling fast across the Internet, and independently-run sites like Ghacks are hit hardest by it. The advertising model in its current form is coming to an end, and we have to find other ways to continue operating this site.
We are committed to keeping our content free and independent, which means no paywalls, no sponsored posts, no annoying ad formats or subscription fees.
If you like our content, and would like to help, please consider making a contribution:
Ghacks is a technology news blog that was founded in 2005 by Martin Brinkmann. It has since then become one of the most popular tech news sites on the Internet with five authors and regular contributions from freelance writers.