12 posts • joined Tuesday 23rd November 2010 22:04 GMT
Simple fix, but...
> The good news is that users need only change the password to make the poorly-coded default codes irrelevant.
Well, yes, but it doesn't inspire confidence that they've not made other similar blunders that affect users' security.
For my last two machines, I've taken a full image of the hard drive before I boot it for the first time.
The only way to be sure.
Qualys browser check...
...says my version of Java (18.104.22.168) is an "Insecure version" (in red text) and I should upgrade to 22.214.171.124.
I check the 6u27 release notes to find "Java SE 6u27 does not add any fixes for security vulnerabilities beyond those in Java SE 6u26".
That sounds rather like Debian unstable (Sid)...