Hacker News new | past | comments | ask | show | jobs | submit login

Java removed certain classes of errors (memory management). It introduced other (providing an insecure sandbox for applets).



I think code execution by insecure deserialization is the big Java security problem now, though I'm neither a security guy nor a Java guy.


It's not like C applets are safer.


If we consider NaCl to be "C applets"... yes, it actually is safer.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: