All the current Java exploits come from Java (not Javascript) running in your browser. And while you can get all the way down to the root of the problem by uninstalling Java on the whole, you can also just lock it down in all your browsers, or just the browsers you actually use. That way you can still have it around with Minecraft or whatever and still be safe. Here’s a rundown:
Chrome
To disable Java in Chrome type “chrome://plugins” into your address bar. This will bring up a new tab. Find the item on the list that reads just plain “Java” and click below it where it says “Disable” in blue. Restart your browser.
Safari
To disable Java in Safari choose “Safari” and then “Preferences” on the taskbar or hit Ctrl and comma simultaneously (⌘-,). Click “Security” on the top row of the new window. Uncheck the box that reads “Enable Java” if checked. Restart your browser.
Internet Explorer 8, 9 and 10
Go to the “Tools” menu and select “Manage Add-ons”. Go to the left of the window that pops up and in the drop-down box below the heading “Show:” select “All Add-ons.” Scroll down the list on the right of the window until you find a subheading under the category “Group” that reads “Oracle America, Inc.” Select each item and disable it with the “Disable” button in the bottom right-hand corner of the window. Restart your browser.
Firefox
Go to the “Tools” menu and select “Add-ons” or hit Ctrl, Shift and the letter “A” simultaneously. Select “Plug-ins” on the left-hand side of the new tab that shows up. Scroll the list on the right-hand side of the screen until you find an item that reads “Java (TM) Platform [somethingsomethingsomething].” Click the “Disable” button on the right. Restart your browser.
Update: There’s now a Java fix if you want to keep running Java in your browser.
Can we get a primer on why java is so nasty..?
Exactly. Since when is Java bad for your computer?
While we're at it, a primer on why java still exists would be nice.
Can somebody give us a brief primer on when existing was bad for your Java?
i'm using icetea for java on with firefox on mint 14. am i at risk or more risk because of my setup?
there's two in Safari...'enable java' and 'enable javascript'. do we uncheck both?
Just Java, as it says in the article.
I'd rather disable Javascript. Hardly come across as much Java.
java and javascript are two very different languages, most of the internet would become unusable if you disable javascript
Last edited January 13, 2013 8:40 pm
It suuuuure does.
Can still get away without it on the good sites though :P
If you use firefox, install the noscript extension. It will disable javascript and java on every site till you choose which ones to allow. Best browser extension ever!
As usual, Opera gets forgotten... ;p
(Best browser ever IMO)
Last edited January 13, 2013 8:19 pm
Type opera:plugins and it's pretty obvious from there.
"A new Java zero-day security vulnerability is already being actively exploited to compromise PCs. The best way to defend against the attacks is to disable any Java browser plugins on your systems."
http://www.theregister.co.uk/2013/01/10/java_0day/