[quote]Many technology companies have turned against Flash in recent months, saying it slowed down web-browsing and was a security risk.
[b]The option to block or pause Flash-based adverts was added to a test version of Chrome earlier this year.[/b]
...
[b]This option has now been switched on by default[/b] and could mean that many adverts built with Flash do not run. Clicking on the advert will make it run.[/quote]
[url]http://www.bbc.com/news/technology-34114486[/url]
First they kill off NPAPI support getting rid of Java, now this. I'm assuming Google is pissing a LOT of people off but fuck this needed to be done badly. The largest exploit % in exploit kits is generally Flash.
Luckily, they provide tools to convert Flash ads to HTML5 which will help a lot. Also, Mozilla may follow Google's lead similar to how they blocked Flash back during the whole HackingTeam fiasco.
good, but they aren't getting rid of flash. you can count on me having this option enabled, though.
Is the flashplayer really that unsafe? I heard java is unsafe but when flash is bought into the mix it somehow makes java seem very secure or something.
it's needed. flash will die, is by default blocked at several large companies/agencies and the older browsers that rely on it for some basic stuff (file upload, web sockets) will get even less margin
Is it really that hard to make Flash secure? Why can Javascript be secure but Flash not?
[QUOTE=Fourier;48594155]Is it really that hard to make Flash secure? Why can Javascript be secure but Flash not?[/QUOTE]
AFAIK Flash is closed source so nobody really knows exactly how the ActionScript Virtual Machine works. JavaScript, on the other hand, is completely open and the way it is interpreted depends on the browser you're using and what JavaScript engine it uses.
So Flash = proprietary and is not open or optimised to what browser you are using and JavaScript = open and can be optimised for by browser devs
adobe are releasing patches for flash, but the amount of people that actually downloads it are not that many. on top of that it's a closed system whereas javascript is more open. javascript can also be 'unsecure' if the developers don't take the appropriate actions, like not trusting user input etc. flash hogs resources and drains battery power. the top players, including e.g facebook, google and mozilla all want it dead
I don't even know why people even use flash these days aside from being used to it for animations
there's SO MUCH BETTER out there, whats even the use?
About fucking time.
[QUOTE=Cuel;48594246]adobe are releasing patches for flash, but the amount of people that actually downloads it are not that many. on top of that it's a closed system whereas javascript is more open. javascript can also be 'unsecure' if the developers don't take the appropriate actions, like not trusting user input etc. flash hogs resources and drains battery power. the top players, including e.g facebook, google and mozilla all want it dead[/QUOTE]
If they wanted to save flash they could make it open source. But hey, it's easy to be commander after war.
[QUOTE=JustExtreme;48594216]AFAIK Flash is closed source so nobody really knows exactly how the ActionScript Virtual Machine works. JavaScript, on the other hand, is completely open and the way it is interpreted depends on the browser you're using and what JavaScript engine it uses.
So Flash = proprietary and is not open or optimised to what browser you are using and JavaScript = open and can be optimised for by browser devs[/QUOTE]
Chromium/Chrome uses Google's Pepperflash though, so security failures on Adobe's flash player probably don't work on Chromes.
my question is what the fuck is going to happen to all the awesome flash animations or games that exist on the net?
what are we just going to erase those from history
[QUOTE=FFStudios;48594458]my question is what the fuck is going to happen to all the awesome flash animations or games that exist on the net?
what are we just going to erase those from history[/QUOTE]
Why not? Plus you'll always have IE.
[QUOTE=FFStudios;48594458]my question is what the fuck is going to happen to all the awesome flash animations or games that exist on the net?
what are we just going to erase those from history[/QUOTE]
Ideal would be convincing adobe to release source code and full specification of the standard so the community could make it's own more stable and more secure wrapper/player thing.
[QUOTE=J!NX;48594259]I don't even know why people even use flash these days aside from being used to it for animations
there's SO MUCH BETTER out there, whats even the use?[/QUOTE]
Part of the problem is that it's either Flash or .GIF for certain uses of animations, and everyone knows .GIF looks like garbage.
[QUOTE=Levelog;48594468]Why not? Plus you'll always have IE.[/QUOTE]
always?? just like i bet how all those people who made something like 80% of the internet's content between 1999 and 2006 thought people would always have flash player. shit is stupid.
[editline]1st September 2015[/editline]
[QUOTE=Awesomecaek;48594476]Ideal would be convincing adobe to release source code and full specification of the standard so the community could make it's own more stable and more secure wrapper/player thing.[/QUOTE]
i like this idea more
[QUOTE=FFStudios;48594502]always?? just like i bet how all those people who made something like 80% of the internet's content between 1999 and 2006 thought people would always have flash player. shit is stupid.
[editline]1st September 2015[/editline]
i like this idea more[/QUOTE]
Well if you want to play a game that uses an old, deprecated player you'll have to use an old, deprecated browser.
[QUOTE=FFStudios;48594502]always?? just like i bet how all those people who made something like 80% of the internet's content between 1999 and 2006 thought people would always have flash player. shit is stupid.[/QUOTE]
"We can kill the notoriously insecure Adobe Flash Player and replace it with an open, flexible, secure standard."
"But all of my ten-year-old Flash games won't be playable!"
"Good point, looks like it'll have to stay."
[QUOTE=FFStudios;48594502]always?? just like i bet how all those people who made something like 80% of the internet's content between 1999 and 2006 thought people would always have flash player. shit is stupid.[/QUOTE]
But Flash and browsers that support it won't magically disappear. If you specifically want to view some old stuff that isn't supported by modern browsers then just use an old browser. I'm not really seeing the problem.
good, we finally start to see HMTL5 and Chrome native based exploits instead of easy java/flash (rofl)
I get that flash sucks and it's great that it's being switched off more and more, but we're gonna lose a huge chunk of internet history when we lose flash
[media]https://www.youtube.com/watch?v=L0nuQ5o2DYU[/media]
sums it up pretty well
[QUOTE=Plaster;48594127]Is the flashplayer really that unsafe? I heard java is unsafe but when flash is bought into the mix it somehow makes java seem very secure or something.[/QUOTE]
There has been an almost constant stream of severe flash exploits being released for many years now. I haven't ever reversed flash or looked into how it works, but I'm going to make an educated guess that if something is exploited as much as flash has been, we probably shouldn't use it anymore.
[editline]1st September 2015[/editline]
[QUOTE=FFStudios;48594502]always?? just like i bet how all those people who made something like 80% of the internet's content between 1999 and 2006 thought people would always have flash player. shit is stupid.
[editline]1st September 2015[/editline]
i like this idea more[/QUOTE]
Leaving yourself open to a major security vulnerability should not happen simply because "muh content". If you really want to ensure your security, download the flash games/animations/whatever individualy and view them with an external application. Its not perfect, but so long as the flash games is a year or two old or you trust the author, you should be sufficiently secure.
When flash is gone just use VM to use that content.
I turned on click to play on plugins forever ago. It's the sensible choice.
[QUOTE=CrumbleShake;48595263]I get that flash sucks and it's great that it's being switched off more and more, but we're gonna lose a huge chunk of internet history when we lose flash[/QUOTE]
We probably won't lose it all when Flash finally dies. There are folks out there who archive stuff like mad, and there's bound to be some little society that dedicates itself to archiving all the classic flashes in a different format.
Hell, there are probably a ton of old Flash movies that've been re-recorded and uploaded to YouTube.
Nice to have a backup plan but I don't see it being all that useful for me. I already run ABP, the ads don't even load in the first place.
Sorry, you need to Log In to post a reply to this thread.