2012 July 15 archive at Robert Pogson

Archive for July 15th, 2012

Using Java to Compromise GNU/Linux

Published by Robert Pogson July 15th, 2012 in technology. 2 Comments

A cross-platform trojan that can attack three different operating systems using Java has been found. Write once, run everywhere works for writers of malware except they need a different payload for different OS.

The idea of Java is great but it’s about time the holes in it were closed. Open-sourcing happened years ago. There’s no excuse for allowing Java, essentially, to be a “trojan-trojan” for malware.

Java still makes sense for applications but allowing/widely using downloads of Java applications is a questionable practice since the language is so easily abused. It’s not just Java. Several other programming languages have similar problems.

A search for vulnerabilities for Pascal gives No results found for site:mitre.org “weaknesses of software written in Pascal”. This is another example of the KISS principle (Keep It Simple, Stupid). Throwing everything into a programming language increases the number of holes and we don’t need holes.

see Cross-platform Trojan attacks Windows, Intel Macs, Linux | ZDNet.

- Robert Pogson

My Mission

My observations and opinions about IT are based on 40 years of use in science and technology and lately, in education. I like IT that is fast, cost-effective and reliable. I do not care whether my solution is the same as yours. I like to think for myself.

My first use of GNU/Linux in 2001 was so remarkably better than what I had been using, I feel it is important work to share GNU/Linux with the world. I have been blessed by working in schools where students and school systems have benefited by good, modular software easily installed in most systems.

I have shown GNU/Linux to thousands of students and hundreds of teachers over the years and will continue in some way doing that until I die in spite of the opposition.