Not sure if anyone else noticed but in Chrome 11, applets are now blocked by default.
http://content.wuala.com/contents/zammbi/Public%20File%20Host/Images/Capture.PNG
unsigned applet too ?
hmm, might be a bug in Chrome otherwise it’d be really stupid if they did that. Are you on linux?
“Are you on linux?”
No, windows 7.
“unsigned applet too ?”
Seems so.
“might be a bug in Chrome”
Could be(though I don’t think so), I am using a beta. I’ll research some more.
http://code.google.com/p/chromium/issues/detail?id=76737
above link looks relevant, from the comments it looks like it might be intentional and the java plugin is infobar’d by default :o.
Google is becoming fun…
Great… Well maybe we should complain on that thread, someone might listen.
Seriously, last year we saw such an incredible rise in exploits of bugs in the JRE, that were possible from within unsigned applets, that this is almost a natural response.
Chrome already replaced buggy Adobe Reader with their own PDF reader, probably for the same reasons.
You really can’t blame them for trying to protect their users.
problem is that it bring new rules in Web world, every plugins can bring security holes this should not be a chrome concern, like if window start to block steam because they think it is not enought secure, or any other software… this is not fair
yup, looks like some anti competition play here from Google. The flash plugin continues to work as before with no block even though it was massively targeted too. Don’t forget that Oracle released a massive patch ball with the last Java 1.6.0_24 release which fixed most of the known security holes, so not sure that argument holds much weight.
[quote]yup, looks like some anti competition play here from Google. The flash plugin continues to work as before with no block even though it was massively targeted too.
[/quote]
Yeah though they work directly with adobe to make it more sandboxed in Chrome. Why couldn’t they work directly with Oracle? I guess it’s because of the suing 
It’s always a compromise.
Given the very poor state the applet plugin was in for more than a decade and the still very marginal use and the massive security problem, I personally think it’s a fair attempt at raising the bar to get infected.
Yeah I have noticed that but I switched to firefox 4 a few weeks ago and I am so glad I did.
In a perfect world maybe, but I cant imagine there is not something behind
this is not a good solution, security hole are everywhere and the global security gain here is negligeable, it just increase the bad reputation of java
once again just imagine tha Microsoft decide Chrome is not enought secure… should they block it this way ? I mean they could just decide to sell a security certification to any software running on window, but is it real solution ? thundirbird, Outlook, IE, Chrome, FF, Steam, Skype, Emul etc… are all potential nice infection vector
nowaday not only browser are using internet, security must be thinked more globally, the gain in security is so poor that this cannot be something else than a “pike” to Oracle
Flash is integrated into Chrome. Like Chrome itself, it’s kept up to date automatically.
Java’s update rate is pretty sluggish.
By the way, Firefox blocks old versions of Java completely. E.g. 1.6.0_07 (can’t figure out the exact version number, but I know that they blocked that one) and everything before gets blocked. Everything prior to _10 doesn’t work anyways (incompatible).
yeh true, blocking out dated plugins is fine and Chrome already does this for all plugins.
However this time they’ve gone further and blocked every version of java (intentionally), even if its up to date.
Infobar’d, not blocked. 
I posted about how outrageous this is and all I got was that I have my facts wrong and then they disabled commenting on the issue alltogether >:(
And I thought I liked Google :’(
I read your replies there.
Keep in mind that you are not dealing with ‘Google’ here but with people. You’re certainly acting immature and have just pissed off somebody at the position to make significant changes, ruining it for others that would have more informed arguments as apposed to “But clearly this exchange was a waste of both our times.” Like that ever helped in a discussion.
To ra4kings defence; It wasn’t his comment that stated “But clearly this exchange was a waste of both our times.”
That aside, I see where google is coming from. The one thing that Chrome has really taken heat for, is it’s lack of security. So it’s understandable that they’re trying to address security issues. Do I personally like it? No. Would my mother like it, if she knew what it was in the first place? Definitely.