Flash on 64 bit systems (was Re: Firefox 4 repo)
Christofer C. Bell
christofer.c.bell at gmail.com
Mon Jul 19 08:01:07 UTC 2010
On 7/19/10, Suvayu Ali
<fatkasuvayu+linux at gmail.com<fatkasuvayu%2Blinux at gmail.com>>
> On Monday 19 July 2010 12:17 AM, Christofer C. Bell wrote:
> > So yes, the software "works well" in much the same way that "an unpatched
> > Windows XP works well" but leaves you open to compromise. Note the key
> > sentence here: "There are reports that this vulnerability is being
> > exploited in the wild against both Adobe Flash Player, and Adobe Reader
> > Acrobat."
> > I'm not sure I'd have such a caviler attitude toward it as you.
> > http://www.adobe.com/support/security/advisories/apsa10-01.html
> > http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1297
> Thanks for the concern Chris. My only use for flash is youtube and maybe
> a few more well reputed mainstream websites/services. I don't want to
> end up with an unstable FF as its a major part of almost everything I
> do. And my previous experiences with nsplugin-wrapper have been _very_ bad.
> Would you say use of noscript or flashblock would be a good compromise?
> If not what are my other options? (maybe I should start a new thread for
> this discussion)
I think FlashBlock would be a fairly good compromise. If you're using
FlashBlock, you can safely wander around the web knowing that no flash you
do not explicitly authorize will be running. As for NoScript, I'm not sure
that it adds value for this specific issue, but I certainly run it anyway
(and not for security reasons).
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the users