I agree with you Victor on the impression that this leaves. When a browser asks you to disable Java, it is a sign that you have hit rock bottom. Once it is disabled, users (not developers) are likely not to turn it back on unless there is a real compelling reason to do so.

We have come to expect security issues in MS products. In fact, we are not surprised when one is discovered. However, in the past few years, MS has done a good job patching vulnerabilities as they come up and they have fixes. The perception is still there that they are doing a poor job. I know some of you may find it funny that I am praising MS. ;-) I think its funny too.

As a developer at a software company that makes its living on web based applications, having a browser tell my customers to disable Java is a detriment to our business.

I think that Oracle should reconsider its policy on zero-day exploits, and critical security issues. When a patch is available, they should make it available and not wait until a scheduled quarterly release.

John

____________________________

John Yeary

____________________________ *NetBeans Dream Team* *President Greenville Java Users Group Java Users Groups Community Leader Java Enterprise Community Leader*

____________________________

<http://javaevangelist.blogspot.com/> <https://twitter.com/jyeary> <http://www.youtube.com/johnyeary> <http://www.linkedin.com/in/jyeary> <https://plus.google.com/112146428878473069965> <http://www.facebook.com/jyeary> <http://feeds.feedburner.com/JavaEvangelistJohnYearysBlog> <http://netbeans.org/people/84414-jyeary>

"Far better it is to dare mighty things, to win glorious triumphs, even though checkered by failure, than to take rank with those poor spirits who neither enjoy much nor suffer much, because they live in the gray twilight that knows not victory nor defeat." -- Theodore Roosevelt

On Thu, Aug 30, 2012 at 3:34 AM, Hildeberto Mendonça <me...@hildeberto.com>wrote: