We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Rohkem teavet

Teema arhiveeriti. Please ask a new question if you need help.

Firefox wants to block plugin

  • 3 vastust
  • 4 on selline probleem
  • 1 view
  • Viimati vastas Ed

Jota
Jota
more options

Hi.

After installing Java SE7 plugin on my Synology DS213+ NAS, Firefox has a pop up message saying the following...

https://addons.mozilla.org/en-US/firefox/blocked/p463

(Java Plugin 7 update 45 (click-to-play), Windows has been blocked for your protection.

Why was it blocked? 

   The Java plugin is considered unsafe to use and should not be activated unless strictly necessary.)

Is this really a risk? I access the Synology DSM (Diskstation Manager) via a Firefox webpage.

Hi. After installing Java SE7 plugin on my Synology DS213+ NAS, Firefox has a pop up message saying the following... https://addons.mozilla.org/en-US/firefox/blocked/p463 (Java Plugin 7 update 45 (click-to-play), Windows has been blocked for your protection. Why was it blocked? The Java plugin is considered unsafe to use and should not be activated unless strictly necessary.) Is this really a risk? I access the Synology DSM (Diskstation Manager) via a Firefox webpage.

All Replies (3)

Ed
Ed
more options

Hello,

You can see the complete list of blocked add-ons here:

https://addons.mozilla.org/en-US/firefox/blocked/

I do not know about this in great detail but my understanding is that historically there have been a very high number of security holes found in the Java plugin. These have been successfully exploited by hackers to gain unauthorised access to users' machines. Mozilla has taken the decision to block all versions of Java as unsafe, users are able to unblock the plugin on a case-by-case basis as they need to.

See here for more information:

https://blog.mozilla.org/security/2013/01/11/protecting-users-against-java-vulnerability/

I'm not a security expert so I can't give specific advice on your access of the Diskstation Manager. But in general I suggest not allowing the Java plugin to run unless you need to.

I hope this helps.

Muudetud Ed poolt

the-edmeister
the-edmeister
  • Moderator
more options

More information about that "block" is here.
https://bugzilla.mozilla.org/show_bug.cgi?id=914690#c50

Ed
Ed
more options

Also see here an article on Java security.

http://threatpost.com/javas-losing-security-legacy