Educause Security Discussion mailing list archives
Re: Adobe Flash
From: Livio Ricciulli <livio () METAFLOWS COM>
Date: Mon, 27 Jul 2015 16:14:04 -0700
We looked into websocket and HTNML5 and decided to re-implement our browser-based applications using it. If we do that, we will be at the mercy of the browser developers to work out the bugs rather than Adobe; but at least we will have some serious competition between a few competing groups (Mozilla, Chrome, Microsoft, etc..)
I think it would be a big step forward.. Livio. On 07/22/2015 09:53 AM, Kevin Reedy wrote:
Flash is a tough one for us, since most of our online offerings utilize it
we can't simply disable it. I am keeping an eye on all the Cryptolocker
type IDS alerts, as well as 'emergency' patching as soon as is reasonable
after the fix is released.
I am putting quite a bit of faith in our URL classification subscription as
well as the Palo Alto 'wild fire' detections, but obviously if the content
is on a compromised but otherwise good page it will be a problem.
Long term solution is to move away from Flash in our offerings, and while
we had already been doing that, this will hasten the timeline.
-Kevin
Kevin Reedy
Executive Director, Information Security
Excelsior College
(518) 464-8720
From: Chris Green <CGreen () UTTYLER EDU>
To: SECURITY () LISTSERV EDUCAUSE EDU,
Date: 07/22/2015 12:17 PM
Subject: [SECURITY] Adobe Flash
Sent by: The EDUCAUSE Security Constituent Group Listserv
<SECURITY () LISTSERV EDUCAUSE EDU>
All,
I just wanted to reach out and see if anyone might be willing to share if
and what has been done at your respective institutions in response to the
multiple zero day vulnerabilities that have been exposed within Adobe
Flash.
Thank you for your feedback!
-C.
Chris Green
Information Security Officer
University of Texas at Tyler
cgreen () uttyler edu
This message and any attachments contain confidential Excelsior College information intended for the specific
individual and purpose. If you are not the intended recipient, you should notify the College and delete this message.
Any disclosure, copying, distribution or inappropriate use of this message is strictly prohibited.
-- Livio Ricciulli MetaFlows Inc w +1(408) 457-1895 m +1(408) 835-5005
Current thread:
- Adobe Flash Chris Green (Jul 22)
- Re: Adobe Flash Greg Williams (Jul 22)
- Re: Adobe Flash Kevin Reedy (Jul 22)
- Re: Adobe Flash Tevlin, Dave (Jul 23)
- Re: Adobe Flash James Farr (Jul 23)
- Re: Adobe Flash H Morrow Long (Jul 23)
- Re: Adobe Flash Brad Judy (Jul 23)
- Re: Adobe Flash Shalla, Kevin (Jul 23)
- Re: Adobe Flash Tevlin, Dave (Jul 23)
- Re: Adobe Flash Greg Williams (Jul 23)
- Re: Adobe Flash Tevlin, Dave (Jul 23)