Slashdot Mirror
Silverlight Exploits Up, Java Exploits Down, Says Cisco
angry tapir writes: Attempts to exploit Silverlight soared massively in late 2014 according to research from Cisco. However, the use of Silverlight in absolute terms is still low compared to the use of Java and Flash as an attack vector, according to Cisco's 2015 Annual Security Report. The report's assessment of the 2014 threat landscape also notes that researchers observed Flash-based malware that interacted with JavaScript. The Flash/JS malware was split between two files to make it easier to evade anti-malware protection. (The full report is available online, but registration is required.)
If Windows 7 supported HTML5 video for Netflix, Silverlight would be retired.
Priest: "Universe from nothing, no laws of physics, sped up time"+ huge discrepancies. Creationism? No. Big Bang Theory
Why doesn't Netflix use Flash, at least as an alternative choice.
Table-ized A.I.
We used Silverlight to build enterprise apps because it's most resembling to fully-functional desktop app platform - like client-server except the server side is built on OData service with row-level access control (by SQL expression rewriting) and clients simply query everything by LINQ, maintaining maximum control over everything except authentication/authorization.
It boosts development time significantly for building apps of the same functionality and does a lot of things which HTML5/JS cannot even maturely do yet, like binary data processing and really fast graphics rendering. If you take a look at their theme resource files, you'd notice that every UI controls and cool effects in Silverlight are actually complex vector shapes to be rendered in real-time, not fake image/bitmap used in typical websites because they're too slow to do anything serious.
But now it's dead.....
If a product requires a CD, the CD is almost sure to be crap.
Bad = Helping someone setup their Linksys router and discovering that since Belkin bought them (Belkin is remarkably inept, I think only 2 of their products ever worked for me and one of those was a cord!), the router setup web page (192.168.1.1) actually requires a very recent browser -- which precludes configuration using a mobile phone or iPad for no good reason --- and provides no way to NOT require a username and password to use the wireless.
And to use the router setup page at 192.168.1.1 you must install the CD! Hello incompetence! How does that work for Linux? Belkin is the worst.
Corporations have special skills to sabotage their own products.
Priest: "Universe from nothing, no laws of physics, sped up time"+ huge discrepancies. Creationism? No. Big Bang Theory
I build a new Windows 7 VM last week.
After the close to 750Mb of patches in the 'download and reboot' cycle, up pops Slitherlight (Like Slitherin in Harry Potter, not nice) as an optional download.
I do not want it but even after hiding it, like a bad penny it keeps on coming back.
Can we really try to get rid of this thing (and flash for that matter). The world has moved on and it is not needed anymore.
Amazon Prime Video. Having that tab open in FF disables my screensaver in 8.1. Arg.
damaged by dogma
you know what's funny?
microsoft announces death of silverlight -> announces silverlight as the thing for wp.
microsoft announces death of xna -> announces pretty much xna as the thing for games for wp / metro.
world was created 5 seconds before this post as it is.
Extinguish ? Flash needs to die in a fire.
I hate to ask this, and I'm sure you're asking yourself, but: why didn't you just build on a desktop app platform? There's something preventing your users from running a full application?
As others have said, Netflix will work in a recent enough build of Chrome on both Windows and Linux with no Silverlight required.
I can't speak for AqD, but quite often, yes. When I was developing business apps using .NET, desktop was my first choice. Unfortunately, most clients were adamant about a web UI, so Silverlight was my first fallback since it let me reuse a lot of the same code. Only if they resisted that did I go with HTML/JS and ASP.NET. Web app development sucks so I rarely do anything of the sort anymore, but Silverlight made it more tolerable.
The Netflix client logic is fairly complex (it dynamically jumps between servers, bitrates, and so on). Each new version they add increases the size of their testing matrix. I'd imagine that they really don't want to do that...
I am TheRaven on Soylent News
Does it use Silverlight? I can watch Netflix on my Linux machine without problems, and I don't have Silverlight installed...
Je ne parle pas francais.
Microsoft says "silverlight s dead", ex Silverlight team (now working on WP) announces Silverlight as the thing for WP.
I guess its the natureof Microsoft's non-joined-up team structures, one team likes something another team doesn't. I think things are changing now with Nadella actually taking charge.
The thing for WP and Metro, according to Microsoft is Cordova! I can't argue against that, even Microsoft knows cross-platform toolsets are the way forward :-)
Could Windows XP be approaching bug-free perfection?
Seems rather more likely it's just no longer worth targetting.
I suspect it's because the dinosaurs who licence their stuff to Netflix think Silverlight has trustworthy DRM magic dust, where other technologies aren't to be trusted.
I really am not happy with the way the web is reducing itself to Ein Language, Ein Platform, Ein Consortium
The only free and open 'non-standard web technologies' I can think of are Java applets (oh dear) and Dart.
Flash and Silverlight are proprietary.
Anyway, what's wrong with the web as a single platform? You still have your pick of browsers.
Why doesn't Netflix use Flash, at least as an alternative choice.
Netflix used to use Flash, but they moved to Silverlight in exchange for a seat on the board at Microsoft for their CEO. So they dropped Flash and went to Silverlight, which caused a lot of problems for a while which they eventually ironed out.
"You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
It boosts development time significantly for building apps of the same functionality
Wow! Silverlight sounds great! I'm always looking for ways to boost my development time. I charge by the hour.
Forgive me, but what's bad with Java applets? They're way more efficient than HTML+Javascript, i.e. something which requires a 2009 machine today would require a 1999 in Java. Java libraries are a lot richer than Javascript both for connectivity and UI. If you're worried about Oracle's treatment of the Java applet platform, choose a decent launcher/updater.
Are you honestly asking what's wrong with having only one platform for development? What's wrong with ANSI C as a single platform? Win32 as a single platform? Everthing lacking in HTML+Javascript is wrong with the web as a platform. And every disagreement on the best way of doing something which can't be alternatively implemented (there is no One True Way) is wrong with the web as a platformm.
Reed Hastings has been gone from that board for a couple of years now.
I get annoyed with the notices from other sites that are asking for Silverlight. It's usually stuff on the login page. eBay and Tumblr (I think) are notable examples, but I've encountered several others.
http://www.java.com/en/downloa...
Forgive me, but what's bad with Java applets?
Security (the greatest downside imo), inability to (ever!) run on mobile devices, increased RAM use from pulling in a whole JVM, external dependency beyond a web-browser, immaturity of JavaFX. Historically Java applets would often cause a browser crash, but that seems not be a an issue these days (presumably as we've just got the horsepower to cope).
They're way more efficient than HTML+Javascript
JavaScript JIT compilers are pretty damn good these days. I suspect that you're right, but performance can be pretty good with web technologies. There are working audio/video-decoders written in JavaScript, for instance.
If you're worried about Oracle's treatment of the Java applet platform, choose a decent launcher/updater.
You mean OpenJDK?
Are you honestly asking what's wrong with having only one platform for development?
Yes, hence why I asked.
What's wrong with ANSI C as a single platform? Win32 as a single platform? Everthing lacking in HTML+Javascript is wrong with the web as a platform.
Well the standards are ever-growing. (And the technical barrier to creating a browser becomes ever more daunting, but I guess that's just the price we pay.)
And every disagreement on the best way of doing something which can't be alternatively implemented
It's called "the web". A mish-mash of incompatible technologies is not good for the web. On the other hand I kinda agree: I'd really like to see JavaScript die and be replaced (it's just awful), but it looks like we're stuck with it. There is an upside here though: stability of the web as a platform. There's one web, and it works on all sorts of devices. That's something that would be compromised by a plugins-for-everything web.
I'm aware of that. But SVG and Canvas only come into major browsers recently and they're not even properly hardware-accelerated yet (I wanted the level of performance you can see in Qt or WPF), let alone any UI frameworks built on top of them.
WebGL might be a better choice. Its performance even in infant stage is years ahead of anything 2D renderers have to offer. But that doesn't solve the incapability of JavaScript to handle binary data such as conversion between different text encodings or parsing office files at client side.
The result products are superior and they're done in lesser time. What else should I care about? If you want to talk about life span of the platform, all Microsoft related tech would have to be abandoned.
The Netflix client logic is fairly complex (it dynamically jumps between servers, bitrates, and so on).
Yeah, that's why Netflix was originally WiMP-based. (whoops, could have sworn it used flash at one time, but DRM-only hence no Linux then. Maybe once it was flash UI with WIMP backend?) Because it can handle cool stuff like jumping between servers, bitrates, and so on. They switched to Silverlight for both UI and video fairly early on, and the rest is either history, or happening right now. On OSX it's already using HTML5 video on Safari, and on Windows it's supposed to be HTML5 on IE11. ISTR an article about how Firefox is going to go ahead and take on a closed video component to permit it to also play HTML5 DRM video, so perhaps we'll have Netflix in Firefox on Linux, which would be a big step forward for Linux-based entertainment centers. I have no problems with Netflix under XP32 in VMWare Player with a Linux host, except that it doesn't integrate with Kodi.
"You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
Why doesn't Netflix use Flash, at least as an alternative choice.
If you need to ask then you wouldn't understand the answer.