Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

What is the reason why Java and Flash runtimes were somehow more prone to malware but JS seems fine? Is it some specific sandboxing technology or something else entirely?


All three runtimes are/were regularly compromised, so there’s no fundamental difference between them.

Flash suffered from not having a spec other than its implementation. Made it hard to fix bugs while being backwards compatible




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: