Solved

The java fiasco on older domains

Posted on 2013-01-12
3
346 Views
Last Modified: 2013-01-17
So given the blanket recomendation by our friends at homeland security to disable java is there a quick fix in the domain environment?
We predominantly have left java to do its thing, neither installing or uninstalling it.
We primarily supports sbs 2003 domains but have 2003 standard and 2008.
Browser enforcement has been left to client end users as the majority of our clientele have a mix of reasons they require particular browsers.
Is there a quick (preferably GPO type deployment) to blanket enforce browser policies (disable IE all together where possible)? Protect Firefox where possible, and create enough trust in chrome to deploy it?
Is there an easy policy that will initiate a removal of all java versions from machines unless they are necessary for client applications?
We primarily run one of the SEP security solutions where customers are willing.
0
Comment
Question by:RB_adcom
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 81

Assisted Solution

by:David Johnson, CD, MVP
David Johnson, CD, MVP earned 250 total points
ID: 38771298
This is not a browser problem per se but a problem with JAVA, either remove java or disable all java plugins. Therefor, (disable IE all together where possible)?, is throwing out the baby with the bathwater.

See my answer in http://www.experts-exchange.com/Software/Internet_Email/Web_Browsers/Q_27993283.html#a38771231 for a registry file to disable the plugin in Internet Explorer, Firefox users are left on their own

See http://nakedsecurity.sophos.com/how-to-disable-java-internet-explorer/ for instructions on how to disable in all browsers.
0
 
LVL 14

Accepted Solution

by:
BlueCompute earned 250 total points
ID: 38786956
Is there a quick (preferably GPO type deployment) to blanket enforce browser policies (disable IE all together where possible)? Protect Firefox where possible, and create enough trust in chrome to deploy it?

Thankfully these guys have worked through this for us: http://www.darkoperator.com/blog/2013/1/14/centralized-management-of-java-se-environment-using-gpo-redu.html

I think that only works for JRE7Update 10 though, I'm afraid
0
 

Author Closing Comment

by:RB_adcom
ID: 38788843
Not what I wanted to hear, but I wanted magic beans
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
WIndows 7 remote desktop issue 6 94
Windows 7 Pro WSUS updates not working 14 54
Global Cyber attack 5 59
harddrive crash 6 43
In this article, I will show you HOW TO: Perform a Physical to Virtual (P2V) Conversion the easy way from a computer backup (image).
An article on effective troubleshooting
Windows 8 came with a dramatically different user interface known as Metro. Notably missing from that interface was a Start button and Start Menu. Microsoft responded to negative user feedback of the Metro interface, bringing back the Start button a…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question