Slashdot Mirror

← Back to Stories (view on slashdot.org)

Petition Asks Adobe To Open-Source Flash To Preserve Internet History (bleepingcomputer.com)

Posted by EditorDavid on from the extra-Flashy dept.

An anonymous reader quotes BleepingComputer: A petition is asking Adobe to release Flash into the hands of the open-source community. Finnish developer Juha Lindstedt started the petition a day after Adobe announced plans to end Flash support by the end of 2020. "Flash is an important piece of Internet history and killing Flash means future generations can't access the past," Lindstedt explains in the petition's opening paragraph. "Games, experiments and websites would be forgotten." The developer wants Adobe to open-source Flash or parts of its technology so the open-source community could take on the job of supporting a minimal version of the Flash plugin or at least create a tool to accurately convert old SWF and FLA files to modern HTML5, canvas data, or WebAssembly code... Lindstedt is asking users to sign the petition by starring the project on GitHub. At the time of writing, the petition has garnered over 3,000 stars.
A reporter at ZDNet counters that "the only way to really secure Flash is to get rid of it... If Flash lives, people will continue to use it, and without security support, it will be even more insecure than ever." He points out there's already several programs that convert Flash into other formats -- and that Adobe already open sourced its Flex framework for building Flash applications back in 2008 (now supported by the Apache Software Foundation as Apache Flex). "In other words, we don't need the Flash source code to convert or create Flash files. Just let Flash go already...!

"Usually, I'm favor with open-sourcing everything and anything. Not this time. Flash has proven to be a net of endless security holes. It's time to let it go for once and for all.

110 of 167 comments (clear)

  1. That reporter is a moron by Anonymous Coward · · Score: 1, Insightful

    History is history. Deleting it to chase some mythical "security" unicorn deletes a part of the internet's history.

    (Let's leave aside how top-down the Flash eradication campaign has been. The users still want it, and telling them they can't have it because you want to play with your shiny new HTML5 toys is a non-starter.)

    1. Re:That reporter is a moron by Anonymous Coward · · Score: 2, Insightful

      Lets smash all forms of analog storage mediums too! I mean look at all of those vinyl records that have ZERO copy protection! I mean how can we let this be! Destroy it all! Fuck preservation of history!

    2. Re:That reporter is a moron by modmans2ndcoming · · Score: 2

      Fuck that...it needs to die and the ground it is on needs to be salted in 10 feet of salt.

    3. Re:That reporter is a moron by theweatherelectric · · Score: 4, Insightful

      The users still want it

      Users don't know what they want. Users fundamentally don't care if their dancing pigs animation is implemented in Flash or something else.

    4. Re:That reporter is a moron by flopsquad · · Score: 1

      Don't even need to read the ZD article to know it's wrong, and also dumb. No one is saying "Let's open source the code and include it in every browser!" Like, what, are people going to be giddy at the prospect of open source Flash and start rolling it into lynx or systemd**?

      Come 2020, regardless of whether Flash is open sourced or not, no one is going to be developing new jank for a dead platform that's not available in any modern browser. Because only a vanishingly small percentage of people will even be able to see the jank.

      I hate Flash as much as the next sane internet-using human, but burning it, salting it, and then pissing on the salt as some misguided paean to security simultaneously hamstrings archivists while managing to do fuck all about actual security.

      **I'm really, really sorry for suggesting this and please no one do this.

      --
      Nothing posted to /. has ever been legal advice, including this.
    5. Re: That reporter is a moron by sg_oneill · · Score: 1

      I'm kind of in both camps. Flash can not die soon enough. However I do have a collection of youthful stupidity that I made many moons ago that I'd love to be able to show to my grandkids one day. Maybe what's really needed is proper spec docs so a html5 converter project doesn't get bogged down in hellish reverse engineering

      --
      Excuse the Unicode crap in my posts. That's an apostrophe, and slashdot is busted.
    6. Re:That reporter is a moron by gl4ss · · Score: 1

      well there's this thing that you can actually vmware emulation run the stuff to forever already.

      the animations you can convert to .. well, mp4.

      but as an interesting sidenote, how aware people are of that flash almost became (essentially) what is android now? they had a semi-decent implementation running on mobile phones of flash lite that was less limited than j2me and more easy to program for than symbian (this was around 2004 or so, the time when symbian ruled the 100 to 700 dollar smartphone segment).

      developers were itching for it (if you have done some multimedia s60 programming you can know why). it had all the pieces to make regular apps.

      BUT macromedia/adobe wanted to SELL it to END USERS for 10 dollars per user! needless to say absofuckinglutely nobody of the end users bought it so making stuff for it was a non starter.

      all they would have needed to do at that point in time would have been an online store and give the player vm for free and they would have snapped the multi-manufacturer mobile apps segment in mere months and made android not so wanted(android had a huge market just waiting for it, in users and developers and manufacturers, due to some dubious strategy choices by nokia when it came to security and preferential treatment of "partners").

      but had macromedia/adobe played the game just a little bit more smart they would have been raking in billions.

      --
      world was created 5 seconds before this post as it is.
    7. Re:That reporter is a moron by Pseudonym · · Score: 1

      You really want the glory that is Lobster Magnet to be unviewable?

      --
      sub f{($f)=@_;print"$f(q{$f});";}f(q{sub f{($f)=@_;print"$f(q{$f});";}f});
    8. Re:That reporter is a moron by infolation · · Score: 1, Funny

      Flash needs to be treated like the smallpox virus. Once it's eradicated from the world, the source code needs to be preserved in an air-gapped laboratory that authorised members of the scientific community have access to in case of another outbreak.

    9. Re:That reporter is a moron by Wootery · · Score: 1

      I agree it's a shame to lose access to old Flash content, but really, some mythical "security" unicorn? Are you denying that we improve security by banning Flash, or are you just being snarky?

    10. Re:That reporter is a moron by fche · · Score: 1

      Thank goodness SJVN has no power to enforce the conclusions of his goofy logic.

    11. Re:That reporter is a moron by Ol+Olsoc · · Score: 2

      I agree it's a shame to lose access to old Flash content, but really, some mythical "security" unicorn?

      He's not wrong, you know. Flash is but one security flaw in an ecosystem of security flaws. Eliminating it will make very little difference, as the problem just moves to a new neighborhood.

      --
      The shepherds did so well protecting the flock that the sheep no longer believed that wolves existed.
    12. Re:That reporter is a moron by The+Grim+Reefer · · Score: 1

      Users want to block the javascript/html ads and tracking shitware while still accessing the dancing pig content.

      Most don't even know/care about the tracking. If they did, do you think they'd use Windows 10?

    13. Re:That reporter is a moron by Cinnamon+Beige · · Score: 1

      That's a false dichotomy.

      Banning Flash is not contradictory to having it made open source so as to enable web preservation. From a security perspective, it might actually be quite desirable--you enable smooth conversion into modern formats now, without the problems and security risks of using back-engineered tools that may let the security flaws of the original slide through, and later use of Flash as an instructional tool. You can show it to students, and let them see for themselves the trainwreck, instead of having them know it only through legends which they might not believe.

      You are certainly in the mythical "security" unicorn region if you believe that further gains in security can be somehow made by burning it and salting the ground, so to speak.

    14. Re:That reporter is a moron by Anonymous Coward · · Score: 1

      Yes because Linux is a shitball in comparison.

    15. Re:That reporter is a moron by Wootery · · Score: 1

      Disagree. Flash was a pile of crap, far less secure than, say, Chrome. Eliminating that easy attack surface makes things harder for the bad guys.

      It also enabled cross-OS, cross-browser exploits.

    16. Re:That reporter is a moron by Wootery · · Score: 1

      I feel you're avoiding my point. Making Flash unavailable in ordinary browsers does improve security. There are no unicorns involved.

    17. Re:That reporter is a moron by Cinnamon+Beige · · Score: 1

      My point is that making it unavailable in ordinary browsers is a realistic measure, but you are indulging in magical thinking if you believe further in security will be had by losing its source code.

  2. Let it die. by Anonymous Coward · · Score: 2, Insightful

    Don't open source it. Don't share or preserve it. Shoot it and bury the remains. It needs to go away. That's the point of EOLing it.

    1. Re:Let it die. by KiloByte · · Score: 2

      Also, Flash being moribund is kind of a blessing here -- a game from 2010 or 2005 is pretty unlikely to use an exploit announced in 2017.

      --
      The creatures outside looked from Alt-Right to Antifa; but already it was impossible to say which was which.
    2. Re:Let it die. by Anonymous Coward · · Score: 1

      I knew someone would ask for Java to die, not realizing that, for years and years, Java is being used on the server, not in the browser. Nobody uses applets anymore, and they are **already** being EOLed.

      Asking to EOL Java because applets have security issues is as relevant as asking to EOL C++ or PHP. Nobody uses any of those to execute code in the browser. If you still think they are, then you're still living in 1999.

    3. Re:Let it die. by Gondola · · Score: 2

      Adobe will never open source it in a million years. It's the most insecure piece of trash and is being EOL'd because new vulnerabilities keep showing up and Adobe isn't making enough money off of it anymore to warrant the team of coders to try to keep up with all the security issues.

    4. Re:Let it die. by KiloByte · · Score: 1

      Java is being used on the server, not in the browser. Nobody uses applets anymore, and they are **already** being EOLed.

      Yeah, we're only 1/3 of the way here. Applets are gone, but Dalvik/ART and Java-on-server still need to be purged off the face of the Earth.

      --
      The creatures outside looked from Alt-Right to Antifa; but already it was impossible to say which was which.
    5. Re:Let it die. by serviscope_minor · · Score: 2

      as relevant as asking to EOL C++ or PHP. Nobody uses any of those to execute code in the browser.

      Sorry, buddy, I;ve got news for you...

      https://en.wikipedia.org/wiki/...

      And with that you can run C++ in the browser. It sounds like a gimmick but it's not. I know people using it in production for serious stuff. Because C++ is rather parsimonious and ASM.js actually maps well enough to the hardware (it's essentially to within some not outrageously huge constant factor of actual native code) stuff written in C++ runs faster than any reasonable thing it's possible to run by-hand in JS.

      Writing in C++ means you can deploy the same core to mobile devices and browsers and have it about as efficient as it's possible to get in any of them. If you're actually deploying a program via the browser instead of a web page, then really matters.

      Plus having to only maintain one codebase is a real boon.

      --
      SJW n. One who posts facts.
    6. Re:Let it die. by modmans2ndcoming · · Score: 3, Insightful

      lol...EOL C#? why not EOL C and C++ while you are at it.

    7. Re:Let it die. by LesFerg · · Score: 1

      It takes LLVM bitcode - which can be generated from C/C++, using llvm-gcc (DragonEgg) or clang, or any other language that can be converted into LLVM - and compiles that into JavaScript

      Not really running C++ then is it?

      --
      If I had a DeLorean... I would probably only drive it from time to time.
    8. Re:Let it die. by Billly+Gates · · Score: 1

      Also, Flash being moribund is kind of a blessing here -- a game from 2010 or 2005 is pretty unlikely to use an exploit announced in 2017.

      No but the runtime will. Also cheap developers in 3rd world outsourced countries maybe more familiar with flash and will keep using it rather than learn HTML 5 for clients in the 1st world. Only when marketshare declines will they learn and use something different.

      Hell if corporations had their way we all would still be using XP, VBScript, and IE 6 as everyone had it at one time and everyone know how to do it ... well debatable with IE 6 rendering bugs :-)

      --
      http://saveie6.com/
    9. Re:Let it die. by Khyber · · Score: 4, Funny

      Do open source it so we can look at the hackjob shitpile that is Adobe code and learn from their utter fuckups, and get a laugh at the same time!

      --
      Still waiting on Serviscope_minor to wake up to fucking reality and realize that Jessica Price isn't going to fuck him.
    10. Re:Let it die. by theArtificial · · Score: 2

      And with that you can run C++ in the browser. It sounds like a gimmick but it's not. I know people using it in production for serious stuff

      The argument that JavaScript is actually close to the hardware really made my evening. We are living in the future!

      --
      Man blir trött av att gå och göra ingenting.
    11. Re:Let it die. by sjames · · Score: 1

      If so, then nothing ever runs C++ or C for that matter.

    12. Re:Let it die. by Wootery · · Score: 1

      Dalvik/ART and Java-on-server still need to be purged off the face of the Earth.

      Well, let's have it then. Why?

    13. Re:Let it die. by coofercat · · Score: 1

      F'ing something completely sounds like a job Adobe is perfectly qualified for!

    14. Re:Let it die. by serviscope_minor · · Score: 1

      JavaScript in general is very far from the hardware. ASM.js on the other hand is a very restricted subset of JavaScript that is. That means it can be efficiently jitted to machine code without suffering from the usual problems, namely the dynamic typing if the main bit of JS.

      The entire point is to have a subset that can be efficiently compiled. By app accounts it works. You won't get native C++ performance, but you'll get within a factor of 5 and it'll be predictable.

      --
      SJW n. One who posts facts.
    15. Re:Let it die. by Trogre · · Score: 1

      Although some of us seem content to live in the past.

      --
      "Nine times out of ten, starting a fire is not the best way to solve the problem." - my wife
  3. Kinda shortsighted counter.. by Anonymous Coward · · Score: 5, Insightful

    To the guy who countered that flash should just be forgotten rather than open-sourced, his excuse for doing so is stupid.

    Yes, Flash in it's current closed-source state is riddled with security holes and vulnerabilities. However if it got open-sourced then one of the first things people would be able to do for the first time ever is pour over the source - find all those security holes - and fucking FIX them.

    And so long as that's the only thing people do with flash once it's open sourced (no more feature creep added by Adobe) then it should be just fine.

    1. Re:Kinda shortsighted counter.. by Anonymous Coward · · Score: 2, Insightful

      How does making something "open source" magically make it bug-free and highly secure? Perhaps Flash is just so old, large and convoluted that there really isn't any way to completely fix it. It could be a hopeless cause and not some product of an "evil corporation" that seeks profit over security,

      Make something to convert AWAY from Flash but please don't keep Flash alive.

      PS: how long before Firefox becomes a completely bug-free and highly secure version of Netscape Navigator?

    2. Re:Kinda shortsighted counter.. by Anonymous Coward · · Score: 1

      "How does making something "open source" magically make it bug-free and highly secure? Perhaps Flash is just so old, large and convoluted that there really isn't any way to completely fix it."

      There's nothing magic about it. As I said, you just get the chance to fix the holes for the first time ever. Why give up without even trying? If it really is a tangled mess THEN people would be able to leave it (or rebuild it from scratch)

      But unless it's open-sourced we'll never know if it's fixable or not. And the difference between what Flash could become compared to existing active open source projects like Firefox, is that Firefox is always adding new bloat complete with brand new bugs as a result. With Flash, as I said, so long as the focus is only only fixing bugs and making it more secure, that won't be a problem. (If idiots just keep adding new features afterwards, then that defeats the purpose.)

      Mind you, I'm mainly taking this stance for the purpose of preservation. If people make use of the opened-source change to make better, easier-to-use, and more secure conversion programs to take flash programs and convert them into something else, I'll be fine with that too so long as it's a 100% compatible output.

    3. Re:Kinda shortsighted counter.. by TeknoHog · · Score: 3, Insightful

      Flash should be kept alive for the same reason we have museums of Nazism -- to remember history and learn from it.

      --
      Escher was the first MC and Giger invented the HR department.
    4. Re:Kinda shortsighted counter.. by Bing+Tsher+E · · Score: 1

      PS: how long before Firefox becomes a completely bug-free and highly secure version of Netscape Navigator?

      It becomes more so bug-free with every new release. That's kind of the point of turning it into Open Source. It can be 'kept alive' by anybody who wants to stay involved.

    5. Re:Kinda shortsighted counter.. by LesFerg · · Score: 3, Funny

      How does making something "open source" magically make it bug-free and highly secure?

      Didn't you know open source has magical properties? Masses of people will suddenly give a shit about the state of the code and want to fix it. After all, when did an open source project ever stagnate and die from lack of interested developers? ... oh right...

      --
      If I had a DeLorean... I would probably only drive it from time to time.
    6. Re:Kinda shortsighted counter.. by shess · · Score: 2

      And so long as that's the only thing people do with flash once it's open sourced (no more feature creep added by Adobe) then it should be just fine.

      I suggest you do a review of open-source software. For every case like Linux where there's a core pushing things in the right direction, there's a case like GNOME where rather than actually fix things, every so often they just give up on the old version and tell everyone to convert to the new incompatible version. Whether a project is open-source or closed isn't really relevant.

      https://www.jwz.org/doc/cadt.h...

    7. Re:Kinda shortsighted counter.. by Anonymous Coward · · Score: 1

      Open Sauce, of course.

    8. Re:Kinda shortsighted counter.. by Skuld-Chan · · Score: 1

      Adobe hasn't been adding new features. They fix dozens of security issues every month. You can read about these fixes on their security response blog.

      I do think its delusional to think just because something is open source means people are going to arrive and fix bugs. More than likely people will pour over the source to find new exploits to target users who's clients never got the kill command from their browser to stop loading Flash.

    9. Re:Kinda shortsighted counter.. by tlhIngan · · Score: 2

      Yes, Flash in it's current closed-source state is riddled with security holes and vulnerabilities. However if it got open-sourced then one of the first things people would be able to do for the first time ever is pour over the source - find all those security holes - and fucking FIX them

      That's probably why it won't be open-sourced. Adobe is simply too embarrassed about the code.

      You see, Flash Player was free. It was never a revenue generating product (their producer software was the product they were selling). They just wanted to write a run time to make it possible so users of the producer can have others play with the output.

      The whole "security flaw" thing ate into the plans - because it means Flash Player requires active development, and dedicating people to work on a product that generates no direct revenue, so it really costs them money.

      I wouldn't be surprised if it was the most shoddy piece of code ever because it was developed on the cheap since it was a "free" product. And they're not willing to admit it, and open-sourcing would require someone to actually fix up the code state from "this thing actually can be compiled?!" to "OK, it's not the best code in the world, but it won't reflect horribly on us".

    10. Re:Kinda shortsighted counter.. by thegarbz · · Score: 1

      find all those security holes - and fucking FIX them.

      Security is just a very small reason for letting that depreciated proprietary plugin dependent junk die.

    11. Re:Kinda shortsighted counter.. by schleimkeim · · Score: 1

      No one learns from history. Elections world wide prove that again and again and again.

    12. Re:Kinda shortsighted counter.. by drinkypoo · · Score: 1

      However if it got open-sourced then one of the first things people would be able to do for the first time ever is pour over the source

      What are they going to pour over it? Gravy?

      --
      "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
    13. Re:Kinda shortsighted counter.. by drinkypoo · · Score: 2

      It's true though, the first thing that happens if Adobe open-sources flash is that black hats scrutinize it to find vulnerabilities they can use against the people who are still running flash. And then they'll develop exploits, and then eventually we'll know there was a hole after a bunch of people get owned.

      --
      "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
    14. Re:Kinda shortsighted counter.. by BronsCon · · Score: 1

      Laser-etch it onto some linguini, then pour some alfredo over it. Or, if you're feeling especially punny, use spaghetti.

      --
      APK quotes people (including myself) without context and should not be trusted. Just thought you should know.
  4. Wait a second... by Gravis+Zero · · Score: 2

    Is there a petition I can sign for Adobe to delete the source code to Flash? I know it's almost dead but why wait? ;)

    --
    Anons need not reply. Questions end with a question mark.
    1. Re:Wait a second... by DontBeAMoran · · Score: 1

      Let's start an anti-petition petition!

      (seriously, I'll sign it)

      If 5000 so-called artists want to save Flash and 500000 programmers want to kill it, Adobe will have to go with the higher number.

      --
      #DeleteFacebook
    2. Re:Wait a second... by 93+Escort+Wagon · · Score: 3, Funny

      Is there a petition I can sign for Adobe to delete the source code to Flash? I know it's almost dead but why wait? ;)

      NO. I have a bar bet regarding how many times the comment "# For the love of God, fix this before next release!!!" appears in the source.

      --
      #DeleteChrome
    3. Re:Wait a second... by arth1 · · Score: 4, Insightful

      If 5000 so-called artists want to save Flash and 500000 programmers want to kill it, Adobe will have to go with the higher number.

      Few things have caused as much damage as old religious texts and their users, but I don't want them destroyed. They should be kept so we can remember history and not be doomed to repeat it.
      A majority, no matter how big, should not be allowed to erase part of history, whether it's burning books or wiping code. This is especially true for bad history.

  5. OMG NO!!!!!! by iCEBaLM · · Score: 1

    Do NOT open source flash!@!##! Some crazy bunch will turn it into a project and keep it alive. Let the monstrosity die already!

    1. Re: OMG NO!!!!!! by Anonymous Coward · · Score: 3, Funny

      Systemd.flash

    2. Re: OMG NO!!!!!! by DontBeAMoran · · Score: 1

      Great, now you gave them the idea. It's all your fault now, you know: The Internet Collapse of 2019, The Great Supernet Disruption of 2023 and the Meganet Crash of 2025.

      --
      #DeleteFacebook
    3. Re:OMG NO!!!!!! by i286NiNJA · · Score: 1

      server side flash servlets

  6. Here's an idea by Anonymous Coward · · Score: 5, Insightful

    Wait until it's completely dead, buried, and gone, even from grandma's old Windows XP machine, THEN open-source it for the sake of history, when there's no risk anyone is ever going to start using it again.

  7. And nothing of value was lost (nt) by Brannon · · Score: 1

    nt

  8. Good luck by Anonymous Coward · · Score: 1

    I'm not saying there's nothing of value in joe-shmoe's ancient server full of flash junk, but maybe we can work on this after we get the mainstream game industry to stop shutting down DRM servers without releasing an end-of-life patch first.
    Ya know, so you can still play the game- that you payed money for.

  9. huuuuuge can of worms there by v1 · · Score: 4, Insightful

    Oh, you think Flash is a security problem now? Publish the source code to it. The malware writers will go over that with a fine toothed comb, and the rate of zero-days will go up by a factor of 10 until they finally exhaust it.

    That, and everyone and their mom will be forking it to try to patch the holes they find. It'll be complete chaos.

    Though... now that I think about it.... that will make flash SOOO much more of a security hazard that even most of the morons that are refusing to migrate their old crap will be forced to action. Maybe that'll be a net good? "Difficult to say... always in motion the future is."

    --
    I work for the Department of Redundancy Department.
    1. Re:huuuuuge can of worms there by DontBeAMoran · · Score: 1

      Nope, it would make those idiots go with this solution: "This website requires OSSFlash fork 42 rev 54 to run properly".

      --
      #DeleteFacebook
    2. Re:huuuuuge can of worms there by Anonymous Coward · · Score: 3, Insightful

      SO.. what you're saying is security through obscurity actually does work?

    3. Re:huuuuuge can of worms there by Tenebrousedge · · Score: 1

      Of course it does. What doesn't work is when that's your only line of defense. Keeping sensitive stuff secret is obviously part of good security.

      --
      Those who advocate genocide deserve every protection afforded by law, and none afforded by common human decency.
    4. Re:huuuuuge can of worms there by SCVonSteroids · · Score: 1

      My mom doesn't know how to code, so I think we're safe.

      --
      I tend to rant.
    5. Re: huuuuuge can of worms there by F.Ultra · · Score: 1

      Well with the current state of flash I would say that that IS it's only line of defence.

    6. Re:huuuuuge can of worms there by NoNonAlphaCharsHere · · Score: 1

      My mom doesn't know how to code, so I think we're safe.

      As opposed to the average, run-of-the-mill Flash "programmer"?

    7. Re:huuuuuge can of worms there by sad_ · · Score: 1

      Oh, you think Flash is a security problem now? Publish the source code to it. The malware writers will go over that with a fine toothed comb, and the rate of zero-days will go up by a factor of 10 until they finally exhaust it.

      great, then it will be so vile and dangerous nobody in their right mind will use it. just stopping support will not finish off flash (just look at the amount of people still using win-xp).

      --
      On a long enough timeline, the survival rate for everyone drops to zero.
    8. Re:huuuuuge can of worms there by SCVonSteroids · · Score: 1

      Shit. My hat off to you sir.

      --
      I tend to rant.
    9. Re:huuuuuge can of worms there by BadDreamer · · Score: 2

      Security through obscurity works as long as the obscurity is there.

      In this case, any bug in the code can be found from painstakingly trying out various combinations of input to Flash. It's a slow method of poking through the obscurity, but it will eventually find all security holes.

      Publishing the source code is simply a quicker way to remove the obscurity.

      In either case, yes, it works as long as the obscurity remains, as is always the case with security through obscurity.

  10. I'd rather forget. by thadtheman · · Score: 1

    Enough saiid.

  11. I don't even understand the premise here by HBI · · Score: 3, Insightful

    Someone is going to recreate Flash, Adobe lacks the power to kill it.

    Moreover, whatever people use in preference to Flash in the future will be just as riddled with security issues because, news flash (ha ha ha), the security problems aren't because of Flash itself, they are endemic to remotely delivered applications with untrusted servers. Couple that with an almost entirely useless PKI infrastructure, and we're going to be blaming something other than Flash for the same security issues for years to come. Perhaps forever, unless we go to walled gardens such as Apple's IOS infrastructure or Microsoft's putative Windows Store.

    --
    HBI's Law: Frequency of calling others Nazis is directly correlated with the likelihood of the accuser being Communist.
    1. Re:I don't even understand the premise here by thegarbz · · Score: 1

      Someone is going to recreate Flash, Adobe lacks the power to kill it.

      Nope. Flash is dying and doing so very rapidly. We're at a stage now where you can happily browse the internet without it. It's basically going the way of ActiveX without the caveat that ActiveX was implemented by a lot of the finance world.

      The world migrated away from it one site at a time. Even without it being killed, there's already very little reason to have it as a plugin browser.

    2. Re:I don't even understand the premise here by HBI · · Score: 1

      You can say that, but someone will reimplement Flash because they need it and don't want to recreate the content and/or mode of delivery. The probability of this grows closer to 1 the closer to 2020 we get.

      --
      HBI's Law: Frequency of calling others Nazis is directly correlated with the likelihood of the accuser being Communist.
    3. Re:I don't even understand the premise here by thegarbz · · Score: 1

      You missed the point. I can build a steam engine at home, that doesn't mean the steam engine is effectively dead.

      Adobe doesn't lack the power to kill Flash, it lacks the power to keep it alive. It's terminal and lying on its death bed.

    4. Re:I don't even understand the premise here by HBI · · Score: 1

      And my point was that regardless of whether Flash lives or dies, whatever successor technology is chosen is going to be no better. So there we are, at an impasse.

      --
      HBI's Law: Frequency of calling others Nazis is directly correlated with the likelihood of the accuser being Communist.
    5. Re:I don't even understand the premise here by thegarbz · · Score: 1

      I'm not sure how you can qualify that statement given that Flash is dying because a successor has already taken over (direct support in HTML + modern browser capabilities) and none of that has come close to being the security disaster that is Flash.

  12. Flash games stored locally by innocent_white_lamb · · Score: 2

    I have three or four little flash games that I have downloaded over the course of time, keep on my computer, and play occasionally. I could live without them, I suppose; they aren't anything super-spectacular. But I like them.

    It would be nice to some kind of a local flash execution tool for that sort of thing. Right now I load them into Firefox to play them.

    --
    If you're a zombie and you know it, bite your friend!
    1. Re:Flash games stored locally by Rhapsody+Scarlet · · Score: 4, Informative

      Gnash. It's perfectly happy to load locally-stored SWF files and if they're old enough to work on Flash Player 7 (which was released in 2003) then they'll probably work on Gnash.

    2. Re:Flash games stored locally by luther349 · · Score: 1

      i think there up to v9 these days.

    3. Re:Flash games stored locally by Cinnamon+Beige · · Score: 1

      For those of you with Windows: Media Player Classic runs Flash stored locally.

  13. Flash doesn't have to run in a browser by Hentes · · Score: 1

    Just download the program and run it on the Flash player on your machine.

  14. NO by DontBeAMoran · · Score: 1

    Nuke it from orbit, it's the only way to be sure.

    --
    #DeleteFacebook
  15. Don't open source it, but release the source code by Anonymous Coward · · Score: 1

    Publish the code, but under a restrictive license, so it can't be used until after the copyright expires (or until some predetermined date, since copyright may continue to be extended indefinitely). That way, flash dies, but it's still possible for future generations to look at material archived from the early internet. Why they'd want to is another question...

  16. Re:Please God, No! by DontBeAMoran · · Score: 1

    That's not enough. I say we ask for presidential orders – signed in triplicate, sent in, sent back, queried, lost, found, subjected to public inquiry, lost again, and finally buried in soft peat for three months and recycled as firelighters.

    --
    #DeleteFacebook
  17. My solution: Add Flash to Creative Cloud by Applehu+Akbar · · Score: 1

    We'r talking about Adobe here, and herein lies the solution. Add Flash to the array of popular Adobe products that are now eyedroppered out to users on a monthly rental basis only under its Creative Cloud. Make Flash CC cost $10 a month, and everyone will finally stop using it.

  18. Meanwhile, in the real world by RightwingNutjob · · Score: 1

    A ton of not-so-obscure companies (cough SAP cough cough) have been releasing front ends to their products that run in a browser with...FLASH! So EOLing it is just going to cost everyone else more money to work around it.

    1. Re:Meanwhile, in the real world by RightwingNutjob · · Score: 1

      Billing, general utilities that at one point had to be done in flash or java because there was no other good way to do them in a remote accessible manor. Spread across industry, government, academia. Not just games and animations you made in high school in the 90s. "Killing" it would cost billions.

  19. Don't save it, don't open source it... by Anonymous Coward · · Score: 1

    Once again, idiots designed a bunch of shit in a proprietary closed-source application...you deserve to lose everything.

    Try an open standard next time.

  20. Delayed Open Source by John+Allsup · · Score: 1

    The complaint is that if Flash is available, people will not migrate away. What needs to happen is for the source to be prepped for open sourcing, but held in escrow for a time until migration away from flash is largely complete. It is critical that an open source Flash does not compete with migration away from it. So migration away must be a prerequisite.

    --
    John_Chalisque
  21. Re:Adobe selling vulnerabilities a reasonable theo by HBI · · Score: 1

    Not in my opinion - the juice wouldn't be worth the squeeze for Adobe. However, one of their developers? That is a thought, certainly. Not enough for an accusation, of course, but it's a possible theory.

    --
    HBI's Law: Frequency of calling others Nazis is directly correlated with the likelihood of the accuser being Communist.
  22. Re:Has no one heard of Handbrake? by Pathwalker · · Score: 4, Informative

    The "big deal" is things beyond simple video content.

    • * Vector animations, that would lose quality if they were rasterized and compressed.
    • * Interactive presentations; where rendering to a normal video and compressing it would strip out the interactive aspects.
    • * Old games; it was easy for people who were learning how to create games to get started with flash, and there is a huge corpus of games out there which represent an interesting segment of indie game development history.

    Hopefully things like Shumway will provide a path forward for viewing old content in the future.

  23. Adobe will not OpenSource Falsh by williamyf · · Score: 4, Interesting

    Two reasons:

    1.) Opensourcing Flash would probably open Adobe to a lot of possible legal liabilities. It may incorporate technology licensed from 3rd parties, and expurging those from the source takes resources (engineers and lawyers). And even if they did a 100% perfect job removing every single thing non adobe controlled, that does not mean that anyone would disagree with them and take tham to court. That could be a honest disagreement, or some patent troll of sorts seeing what can be extorted...

    2.) Adobe already makes programming tools which allows you to take a FLA or SFW file and convert it to todays HTML5/CCS3/ECMAScript standards. And as time passes, those will get better, and rake adobe lots of £€¥$ .

    The best bet to preserve the parts of the web heavy on flash, is to develop a prupose built minimal browser, only for those sites, where the 2020 version of the plugin resides "as is" with no other plugins or ad-ons, and which can ONLY browse Whitelisted sites... Even better if you develop an addon for 2020 browsers that says "Open in flash" (analogous to the current "Open in IE"Plugins nowadays) and invoke that minimal browser for that site and that alone...

    --
    *** Suerte a todos y Feliz dia!
    1. Re:Adobe will not OpenSource Falsh by bad-badtz-maru · · Score: 1

      Adobe won't open source the Flash player because most of the code is used in the Air runtime. Flash as a browser plugin is going away, that's all.

  24. Never heard of... by sproketboy · · Score: 1

    Penis face never heard of change.org?

  25. Re:Has no one heard of Handbrake? by theweatherelectric · · Score: 1

    Hopefully

    I think that sums up the basic problem with Flash. You're put in a position where you have to petition and hope. The Shumway git repository hasn't seen much activity for a couple of years.

  26. Source code for posterity only by guruevi · · Score: 1

    They should release the source code just to make sure that everyone sees how NOT to create an abomination like that again, also, if you do, hopefully an ultra-intelligent AI will pick up on it, try to make it work and we'll save the human race.

    Also, that bro-ski from ZDNet doesn't know what it's talking about. Flex is not Flash, Flex is a developer tool to make Flash applications. It requires Flash (the closed source plugin) to run the things that come out of Flex.

    --
    Custom electronics and digital signage for your business: www.evcircuits.com
  27. Interesting... by VeryFluffyBunny · · Score: 1

    ...that opinions about Adobe Flash are emotional, polarised, and poorly informed. PR is the art of encouraging people to hold irrational, poorly-informed beliefs for an ulterior motive. When something gets to this state in public opinion, then it's time to start looking for which PR campaign(s) are responsible. My guess is that Apple Inc. and Google don't like software that can run in web browsers that can compete with apps. In addition, it's far riskier to install an app on your operating system than to run Flash in your browser.

    --
    Debate is a form of harassment. Do not question my truth.
  28. Re:Please God, No! by omnichad · · Score: 1

    Pouring acid on ashes will only neutralize the lye produced when the ashes react with water.

  29. Reporter is an ignoramus by Solandri · · Score: 1

    A reporter at ZDNet counters that "the only way to really secure Flash is to get rid of it... If Flash lives, people will continue to use it, and without security support, it will be even more insecure than ever."

    Flash was not intended to be the de facto scripting language for the web. Repeat: Flash was never intended to bring scripting to websites.

    Flash was designed to do one simple thing: Allowing animators to transmit animated movies over low-bandwidth dial-up connections. (YouTube version if you don't have Flash). Instead of transmitting compressed video, it would transmit a background, sprites, and instructions for moving, rotating, zooming, and animating the sprites against the background according to a timed script. It's still used for this purpose today.

    To understand why Flash took over the web, you have to go back to the mid-90s. The web had just become mainstream, and the new population of web designers were pushing the envelope of HTML's capabilities. They sorely wanted to be able to add animation (other than the ridiculous blink tag), audio, and scripting so visitors could do things other than just view static content. The W3C (organization setting HTML standards) refused. So web designers looked elsewhere, and lo and behold they found Flash. It did most everything they wanted. But because it was only designed to play animations, not run scripted websites, security was never considered in the design. But with the W3C refusing to add these capabilities to HTML (they wouldn't for over 15 years), web designers all began using Flash on their websites. It soon became a de facto web standard, and everything went downhill from there.

    I don't give a whit about Flash websites. I hated them when they first appeared, I still hate them now. Nothing would make me happier than if they all disappeared forever. But there's a huge amount of artistic and programming content out there written for Flash (I have a folder full of a few Flash movies, early zombie games, and old arcade game clones). It would be incredibly short-sighted to consign these locally run Flash animations and games to the dust bin because I hated Flash websites.

  30. Digital Smallpox ??? by it_prole · · Score: 2

    Reminds me of the debate about whether we should keep or destroy the last remaining sample of Smallpox.

  31. No need to open source just for preserving by thp4 · · Score: 1

    If Flash is open sourced then either nobody will touch the code (so not needed for "preserving", only for educational purposes), or it will be adapted and ported. For preservation, just keeping copies of the (offline) Flash installer and the natural habitat/environment (Windows XP, ...) around and some kind of VM software (VirtualBox) would be better in my opinion. Just like we can preserve NES games by just keeping the ROM files, the games are not gone because there's no access to source code. And if there's really big demand for it, people can always reverse engineer it (as has been done with some NES games). Old games that have their source available will get other contributions (e.g. EDuke32 and the high resolution pack changes Duke Nukem 3D to higher fidelity, but it's not preserving the original way the game was back in the day).

    So preserving (in its pristine form) is one thing, open sourcing and trying to evolve it is another. In my opinion, Flash shouldn't be evolved. But Flash should be preserved in its pristine form, so we can watch Homestar Runner cartoons even a few years down the road in a Windows XP VirtualBox (or whatever virtualization software happens to be the thing of the day then).

    1. Re:No need to open source just for preserving by Cinnamon+Beige · · Score: 1

      You...do know that most of the emulators used for playing ROM files are backwards-engineered, some laboriously so, because the inner workings are kept secret? There's some reason to doubt that some of the game system manufacturers themselves know anymore what the inner workings of the hardware were, given that some ports look to be 'ROM+emu' packages.

      The knowledge on the inner workings of the player enable a faster, smoother development of an emulator. But, really, I would expect the source for Flash to be educational...and help ensure Adobe never lives it down.

      Do we really want Adobe to get to live Flash down?

  32. hears the thing by luther349 · · Score: 1

    flash has been dying for the last 10 years yet it keep's on trucking. they even started updating linux flash again after they killed it. i bet 2020 will come around and they will make some excuse to keep it going.

  33. No Flash replacement by MoarSauce123 · · Score: 2

    The great advantage of Flash is that you can create a RIA once and it looks and behaves about the same no matter which browser or OS it is run on. HTML5 with JS is FAR FAR FAR away from that. There is no reasonable replacement for what Flash can deliver. With Flash going away the web loses a great tool. And yes, I understand the security issues...then again, cars are inherently dangerous and we still drive every day.

  34. Re:All software is awful by MoarSauce123 · · Score: 1

    Yep, but it is a fashion to bash Flash and ignore the craptastic junk others put out. I'd be fine with Flash going away for good if those who demand its demise the loudest can provide a clear alternative that matches Flash's capabilities 1:1....and no, HTML5/JS is not it, looks and works different in every browser and so far not a single browser fully supports the standard.

  35. Intrusive Animated Ads by AnalogDiehard · · Score: 1

    "Games, experiments, intrusive animated ads and websites would be forgotten."

    Corrected with emphasis. Marketers had so badly exploited Flash with intrusive animated ads that I HATED the Flash plugin. Other than YouTube in its early days, Flash has served little purpose for me.

    I would not shed any tears if Flash were left to be forgotten along with Clippy, Photophucket, and Microsoft Bob.

    --
    Eternity: will that be smoking, or non-smoking? I Corinthians 6:9-10
  36. In this case I'm not quite sure by Mrakodrap · · Score: 1

    If it's worth preserving such "internet history" as I can only recollect seeing or using lousy web games, advertising banners, and artsy websites which would never fully load or open due to load bandwidth and CPU/memory constrains.

  37. But... by jcbarlow · · Score: 1

    what about "Homestar Runner"?

  38. Chumby by SteveR · · Score: 1

    Open source it. I want to create new widgets for my Chumby, which runs an old version of Flash.