MailScanner is a brilliant piece of work which integrates Sendmail/Postfix/Exim/whatever with SpamAssassin (plus Razor/Pyzor/DCC) and ClamAV/BitDefender/Sophos/Mcafee/etc, all driven by highly customisable rulesets. It's open source, support via the MailScanner Mailing List is second to none, and its author, Julian Field, is always improving an already excellent product. I cannot recommend it highly enough.
Avast! also has excellent technical support via their support bulletin board. It's an excellent product. In my opinion it is the best of the freeware antivirus products (OK, so you have to register every 15 months), and is probably better than the likes of Norton and McAfee.
Where it shines is the rapid and frequent pattern updates, usually hours before the aforementioned products.
In the new Netscape Browser, select the option to render in Netscape mode, and then type windowsupdate.microsoft.com in the url barl. Lo, Windows Update appears and works!
Hmm, I do, and I'm a home user! I'm forever fixing friend's PCs, including updating their Java runtimes, and I burn the JRE, Firefox, and a host of other useful stuff onto one CD which I take with me. So many people are still on dial-up:-(
I don't think the open-sourceness or not of an application is the relevant issue.
Consider three email clients for home users of Windows:
Outlook Express - proprietary, bundled, and happily executes malware without a thought (and aids in social engineering attacks by hiding file extensions), insecure by design
Pegasus Mail - proprietary, free, but not open source. Never excecutes anything unless explicitly told to, secure by design.
Thunderbird - open source, secure by design.
Design's the key, not the platform.
But things aren't helped by idiotic PC games and applications requiring users to have administrative rights in order to play them (The Sims, The Sims 2, for example - it even says so on the box).
Sun's Installer will happily leave your old copy on, so uninstall first. If you're using the Java 3D addon, you'll need to uninstall that and the old Java first. Then install jre 1.5.0 and Java 3D. Then all works happily.
Yes, right, and download that way for corporate deployment? Or multiple home machines? I for one would prefer full releases over patches for most products. In the old days, Veritas used to release fully patched builds of Backup Exec on a regular basis. It made a sysadmin's job so much easier not having to chase after a handful of patches every time a new (licensed) copy was deployed. Patches bad, full releases good;-)
No, it wouldn't. People could be running any mix of old Java runtimes. A full release is the only goof-proof way of ensuring that the fixed version is correctly deployed.
Oops, engage brain before posting. www.java.com is the one which is wrong. I raised this issue on bugtraq / full-disclosure yesterday. Obviously Sun's a bit slow.
The latest version for many users is IE 6 SP1, which is vulnerable. Not everybody has XP, and even a lot of XP users still don't have SP2 (you try downloading it over a dialup line sometime).
For a brief moment I thought you were taliking about a game based on the great Andrei Tarkovsky's movie Stalker, then I awoke and realised this is Slashdot;-)
Slashdot Mirror
MailScanner is a brilliant piece of work which integrates Sendmail/Postfix/Exim/whatever with SpamAssassin (plus Razor/Pyzor/DCC) and ClamAV/BitDefender/Sophos/Mcafee/etc, all driven by highly customisable rulesets. It's open source, support via the MailScanner Mailing List is second to none, and its author, Julian Field, is always improving an already excellent product. I cannot recommend it highly enough.
Yeah, that guy talking at me was kinda freaky!
Avast! also has excellent technical support via their support bulletin board. It's an excellent product. In my opinion it is the best of the freeware antivirus products (OK, so you have to register every 15 months), and is probably better than the likes of Norton and McAfee.
Where it shines is the rapid and frequent pattern updates, usually hours before the aforementioned products.
Well, a "shamelessly ripped off from an obsolete version of Mozilla Firefox" would have done ;-)
Help / About Netscape Browser, then click on the "Credits" button. Hmmm, a whole load of names missing there.
In the new Netscape Browser, select the option to render in Netscape mode, and then type windowsupdate.microsoft.com in the url barl. Lo, Windows Update appears and works!
In the meantime, you can use CinePaint.
Hmm, I do, and I'm a home user! I'm forever fixing friend's PCs, including updating their Java runtimes, and I burn the JRE, Firefox, and a host of other useful stuff onto one CD which I take with me. So many people are still on dial-up :-(
It IS on java.sun.com, so it is released. JRE 1.5.0 runs fine here. Firefox users will find fewer Java-related crashes with that release too.
I don't think the open-sourceness or not of an application is the relevant issue.
Consider three email clients for home users of Windows:
Outlook Express - proprietary, bundled, and happily executes malware without a thought (and aids in social engineering attacks by hiding file extensions), insecure by design
Pegasus Mail - proprietary, free, but not open source. Never excecutes anything unless explicitly told to, secure by design.
Thunderbird - open source, secure by design.
Design's the key, not the platform.
But things aren't helped by idiotic PC games and applications requiring users to have administrative rights in order to play them (The Sims, The Sims 2, for example - it even says so on the box).
Home users will go to the former, not the latter!
Sun's Installer will happily leave your old copy on, so uninstall first. If you're using the Java 3D addon, you'll need to uninstall that and the old Java first. Then install jre 1.5.0 and Java 3D. Then all works happily.
You go to www.java.com, upgrade from 1.4.2_03 to 1.4.2_05 and think you're safe, until one day, BOOM!
WAKE UP SUN!
Hear hear! And the fact that the "java test" page is well hidden from view. Yet another triumph of web page design gimmicks over usability.
Yes, right, and download that way for corporate deployment? Or multiple home machines? I for one would prefer full releases over patches for most products. In the old days, Veritas used to release fully patched builds of Backup Exec on a regular basis. It made a sysadmin's job so much easier not having to chase after a handful of patches every time a new (licensed) copy was deployed. Patches bad, full releases good ;-)
Get j2re from here.
follow the links to the JRE download.
www.java.com is STILL dishing out the wrong version (1.4.2_05). Grrrr. Naughty Sun!
Yes, but there are still people out there running JVM 1.3.x. I suspect a universal patch would be larger than the 14MB full install.
No, it wouldn't. People could be running any mix of old Java runtimes. A full release is the only goof-proof way of ensuring that the fixed version is correctly deployed.
www.java.com is only offering j2re-1.4.2_05, a vulnerable version.
Version 1.5.0 is available from java.sun.com.
WAKE UP SUN!
Oops, engage brain before posting. www.java.com is the one which is wrong. I raised this issue on bugtraq / full-disclosure yesterday. Obviously Sun's a bit slow.
java.sun.com is STILL dishing out J2re-1.4.2_05.
Be sure to get the right one from java.sun.com/j2se
Fixed in Mozilla 1.8a5 (out today) and will be fixed in Firefox 1.1 which is due in March.
Folks, you should check out this Sun Java Plugin Arbitrary Package Access Vulnerability
The latest version for many users is IE 6 SP1, which is vulnerable. Not everybody has XP, and even a lot of XP users still don't have SP2 (you try downloading it over a dialup line sometime).
The ISC has more details here and here.
For a brief moment I thought you were taliking about a game based on the great Andrei Tarkovsky's movie Stalker, then I awoke and realised this is Slashdot ;-)