The Next Java Update Could Make Yahoo Your Default Search Provider 328
itwbennett writes: At the company's shareholder meeting on Wednesday, Yahoo CEO Marissa Mayer announced a partnership with Oracle that could result in Yahoo becoming your default search provider in your browser. Starting this month, when users are prompted to update to the next version of Java, they'll be asked to make Yahoo their default search engine on Chrome (and Internet Explorer, for what it's worth). And, according to a Wall Street Journal report, the button will be checked by default, so if you aren't looking out for it, you might unwittingly find yourself a Yahoo user.
This will do WONDERS for Yahoo's image! (Score:5, Insightful)
Re:This will do WONDERS for Yahoo's image! (Score:5, Insightful)
Oh, no, wait, he switched to Chrome because he hated it so much. Take the hint, Marissa.
As an aside, though - Does anyone actually allow Java to update itself? Of all the common self-updating software out there, Java easily wins as the single most obnoxious. Aside from hijacking the top result when I type "update" in the start menu's search bar... Aside from running all the fucking time rather than just when Java starts... Aside from nagging the user more relentlessly than even the far more legitimate Windows update (Bing aside) - It actively breaks shit every time it updates. You had one job, Larry...
Re: (Score:3)
The fact that you have to slog through the Java Platform, Standard Edition: MSI Enterprise JRE Installer Guide for Windows [oracle.com] to neuter the worst of its behavior is pretty damned annoying, however. Just a few last legacy uses and I can finally pull the plug...
And, for the few bastard applications that break on remotely modern JREs, it's fun with 'static installations' and breaking out the Deployment Rule Set [oracle.com].
Recitation of the
Re:This will do WONDERS for Yahoo's image! (Score:5, Insightful)
Why, just the other day, a coworker told me how much he loved Bing coming back after every round of Windows updates.
Windows Update doesn't do that. Microsoft's anti-malware tools sometimes do, if they detect that your default search provider or homepage have been changed to malware sites. Both Windows Defender and the Malicious Software Removal Tool get updated with Windows Update every month, so maybe that's why his settings kept being reset.
Re:This will do WONDERS for Yahoo's image! (Score:5, Interesting)
As a professional developer who has led a number of fairly large scale Java projects I've always just accepted the existence of Java on my computer, it's a thing I've worked with so it's a thing I need. Or so my default thinking always went.
But the last time Java asked for permission to update on my computer at home there appeared to no longer be an obvious way of avoiding the Ask toolbar install. I had a choice of next, or cancel which cancelled the whole installation. I was getting fed up of it anyway, given that it seemed to be persistently asking to update every time I went to my computer anyway.
Java, therefore is gone from my home computer and I will no longer consider it for any spare time projects. This has the knock on effect that it's reduced in desirability for me as an option when determining what technology to use for new commercial projects at work too. If I have a choice between Java + Ask, or no Java, it's not really a difficult choice for me.
So for me, Yahoo can stick whatever they want on it, but under Oracle's stewardship it's going to end up a dying product. For some reason, Yahoo seems incredibly intent on consistently tying itself up with losers. Instead of continuously wasting money backing losers, they should probably just spend what needs to be spent on backing a winner for once.
I like Java as a technology, and a language - hell, I've posted enough times here defending it, but when the client distribution forces the installation of malware like Ask, it's pretty much a dead end for anything desktop based. You can't as a professional insist your clients install something that tries to bundle malware to use your product with a serious face, it's just not tenable. It'd be one thing if it was just a one off question you could say no to on initial installation, but the frequent updates often mean it can be an attempt to force it on you multiple times a week in some cases. It hopes that in just one of those cases, you'll forget to untick the checkbox and accidentally install, well, obviously that hoping was fruitless, because now there just is no checkbox to untick.
I understand that with command line switches you can tell Java to skip that crap, and that there are options to automate installation without it in corporate environments but frankly in the end it's just easier to not install Java in the first place unless you simply have no choice.
I can't say I've missed it one bit, I can't remember the last time I needed it for anything at home. So my "I need that because I work with it" attitude has changed to "Why did I ever put up with all those incessant update nag screens for years". I've got better things to do than play the "try and remember to avoid installing malware because Java wants to update" game every time I sit down at my computer.
Re:This will do WONDERS for Yahoo's image! (Score:5, Insightful)
As a professional java developer who's 'led a number or fairly large scale Java projects', you never realized the JDK includes a fully functional JRE without ad-crap installed? Color me suspicious.
Re: (Score:3)
Of course I do, but I don't have any control over client deployments, and I never really saw any point going out of my way to explicitly install it on my home computer when it's already long had the consumer auto-updating version of the JRE on it.
Just because it's there, hidden out the way, doesn't mean it's guaranteed to be the one everyone will use.
Re:This will do WONDERS for Yahoo's image! (Score:4, Informative)
Re:This will do WONDERS for Yahoo's image! (Score:5, Interesting)
I like Linux. I run Linux at home. But I make my living putting up with Windows.
Re: (Score:3)
Re: (Score:3)
Windows has never required the use of a common installer platform. It was always possible for a developer to custom-build an installer to do whatever they wanted (within the constraints of security mechanisms like UAC). The installer could be a bunny hopping across your screen, opening Explorer, and pooing files into the install folders.
FWIW, Windows 10 is looking to improve that situation. Universal Windows Platform apps will only have one installer mechanism, AppX, which will highly restrict what the i
Re: (Score:3)
The installer could be a bunny hopping across your screen, opening Explorer, and pooing files into the install folders.
I am SO tempted to try to write this now...
Re:This will do WONDERS for Yahoo's image! (Score:5, Interesting)
Microsoft started flagging the Ask toolbar as malware recently in Windows Defender, and automatically removing it. They did so because the Ask toolbar changes your default search provider without asking. Seems like if they made the Java installer do that too, the entire installer would be flagged as malware by Microsoft.
Could be interesting.
Re: (Score:3)
Re:This will do WONDERS for Yahoo's image! (Score:5, Funny)
I find it ironic that Ask would do that without, er, asking. Clearly, it's questionable behavior.
Re: (Score:3, Funny)
Since when is "questionable" a synonym for "evil"?
Re: This will do WONDERS for Yahoo's image! (Score:5, Informative)
Whoosh!
Ask, questionable... Come on, you didn't see that coming?
Re: This will do WONDERS for Yahoo's image! (Score:2)
Have you not seen this behavior before? The user is asked, but the box is prefilled, you have to opt out, rather than opt in.
Re: This will do WONDERS for Yahoo's image! (Score:5, Interesting)
If all anti-virus softwares started to list any installer with an "Opt-Out" procedure as "Potentially Unwanted Program Installer" it would put an end to the habit of pushing shit down the throat of users.
The problem is not so much people competent with tech as people that don't know left from right on computers and just clicks "Ok". They suffer from all that crap like a new browser installed as well as changed homepages and search providers and then they scream that they don't understand their computer.
Re: (Score:3)
One thing I did that helped was push out a program called UnChecky (Google it, or just add dot com for their site) to our domain.
They maintain a list of installers that do the default-on bullshit options, and when one of those installers is run it uses UI automation calls to turn off all the bundled offers.
I think it is/was more targeted at end-users that hammer the OK/next buttons until things go away, but with the event of updater software silently installing bundled crap it is easy for even a seasoned ve
Re: (Score:3)
Adobe just did this for mcafee [imgur.com] so yeah, it seems to me that all the companies seem to think this is just an awesome idea. I know, we'll change shit for people then laugh when this backfires or something! Though I'm pretty sure that this stuff is illegal here in Canada now.
Re: (Score:2)
Changing the user search is bad, but not nearly as bad as installing a crappy browser addon that hijacks your search.
I think the former is a bothersome, but tolerable advertising practice (all advertising is bothersome in a way). The latter should be a criminal offence.
Re:This will do WONDERS for Yahoo's image! (Score:5, Informative)
Both should be a criminal offence - If I install an application (e.g. Java), then it should do what it needs to do to make that application work, not mess around with *my* environment unnecessarily.
Re: (Score:3)
Assholes ... (Score:5, Insightful)
Gee, I'm awful glad I don't have Java on my personal machine any more.
Because the sleazy bastards running it are mostly interested in their ad revenue.
Here's a thought, guys ... how about you stop trying to change our browsers for your own benefit?
Java is dying under the stewardship of Oracle. The sooner the better.
Re: (Score:3)
Re: (Score:2, Interesting)
Java was dying under the stewardship of Sun. Sun were the ones who installed the ask.com toolbar. Oracle got Java 7 out in 18 months after it having been stalled for six years. Stop FUDing. They also got out Java 8, which is the most vibrant and advanced Java release ever.
Re: (Score:2, Insightful)
Java 8, which is the most vibrant and advanced Java release ever.
Yeah, if your view of "vibrant" is puking on a pile of shit...
Re:Assholes ... (Score:5, Funny)
Okay Larry, you can stop with the anonymous Slashdot postings - we know it's you.
of course it will be a default (Score:2)
Re:of course it will be a default (Score:5, Funny)
That's the right word.
This is not news... (Score:2)
Re:This is not news... (Score:4, Informative)
That's not the point, there's a legal issue here. Actually, it's settled case law: opt outs are illegal. End of argument. The checkbox should default to clear (ie the default search engine should NOT be changed because someone forgot to uncheck the box).
Re: (Score:2)
Actually, it's settled case law: opt outs are illegal. End of argument.
What if your source for this claim? Searching for "opt out illegal" doesn't seem to turn up anything relavent.
Re: This is not news... (Score:3, Funny)
You're probably searching on Yahoo.
Re: (Score:2)
Oracle can package Java any way they want, including with "opt-outs." Downloading/installing Java is a voluntary choice the user makes.
Re: (Score:2)
It depends on where you are from and the content. In the US op-outs are generally legal, but not so much for other countries.
Re:This is not news... (Score:5, Insightful)
Apologist alert. So if you "voluntarily" choose to engage me to mount new tires on your car, does that mean you don't mind if I install a tracking device in cooperation with the NSA, if you fail to spot the tiny pre-checked box on page 678 of the paperwork? Because everyone should EXPECT tracker installation when they "voluntarily" choose to install new tires, right?
Re: (Score:2)
I agree with the parent they *can* do these things, and nobody ought should stop them. I hope the reaction from users is "Fuck you I am going to avoid using your products and those of the people you are advertising for like Yahoo whenever possible in the future."
Bad business practices should be rewarded with less business. People need to stop being sheep and just accepting it.
Re:This is not news... (Score:5, Informative)
EU Directive 2002/58 on Privacy and Electronic Communications deals with this, as does the maxim "Silence or lack of objection does not imply informed consent", to paraphrase Munby LJ in G (R on the application of) v Nottingham City Council [2008] EWHC 400 (Admin), para. 56.
Re: (Score:2)
Re: (Score:2)
Re: (Score:2)
Then obviously, since you are so intellectually honest, if you call me to come and repair your water pipe, you won't mind if I leave a heap of steaming shit on your nice tile floor.
Re: (Score:3)
Let's say you've moved into an apartment because it was close to your work. Every time they come over for quarterly inspections or to fix an issue you've reported, they mess up your toilet so it'll overflow next time you use it - unless you remember to specifically opt-out by asking them not to do that.
Re: (Score:3)
No, they're having the box checked by default - you have to absolutely ask them to not shit on your floor.
Re: (Score:3)
No, they're having the box checked by default - you have to absolutely ask them to not shit on your floor.
And they're a lot like my dog - you might ask them not to, but they'll probably do it anyway.
Re: (Score:3)
It is significantly different. The difference between op-in and op-out is massive.
Re: This is not news... (Score:5, Insightful)
But it's still evil. Okay, so there's a way to avoid it - nice. It's still a dick move to reconfigure the user machine like this.
My machine has a default for a reason. I've set that default based on my preference. That you're changing my preference based on a totally unrelated action is a dick move. That you're changing it based on a required action is a double dick move. Java updates are *not optional* if you want to stay secure.
Once software reaches this stage it's clearly a failed business venture. What next? We could always ship Java with malware to tap into some of those botnet dollars? How about we ship it with backdoors? How about shipping it with a keylogger? Is there anything else you'd like to ship it with?
Fuck Java. I'll use C++, thanks.
Opt out sneakware crap and Oracle suck. (Score:5, Interesting)
Re: (Score:2)
I hope English is your second language. Meet Bob. [angryflower.com]
The plural of company is companies.
Degenerate vs Innovate (Score:2)
I'd like to see innovation rather than degeneration.
It sucks that Oracle owns Java and is really in one market (not Java).
Yahoo is just trying to stay relevant. I do still use them for email, have been since around 1997.
Next Ask Toolbar (Score:2)
Next they will try to install the Ask toolbar. Sun did this bullshit back in the early 2000's. I am surprised it has taken this long for Oracle to take this step to try to ruin Java.
Re: (Score:2, Informative)
You obviously have not had to install Java recently. They have been bundling the Ask Toolbar (checked by default, and also making Ask your default search provider) for the last few years.
Honestly, bundling Yahoo is a step up - or at worst sideways. But, it is still criminal that this kind of crapware is enabled by default, preying on the novice users who are not savvy enough to un-check it.
Re: (Score:2)
You obviously have not had to install Java recently. They have been bundling the Ask Toolbar (checked by default, and also making Ask your default search provider) for the last few years.
Honestly, bundling Yahoo is a step up - or at worst sideways. But, it is still criminal that this kind of crapware is enabled by default, preying on the novice users who are not savvy enough to un-check it.
AC is right - if this is a change from Ask.com to Yahoo, it is an improvement. If the Ask-bar still gets installed - fuck you Oracle.
Re: (Score:2)
They've been bundling the Ask toolbar with the Java installer for years now. It sounds like they are just switching to Yahoo instead - or maybe both. The article doesn't say.
THIS (Score:2)
is a practice that needs to be outright BANNED.
Yeah, for exactly one search (Score:2)
Re:Yeah, for exactly one search (Score:4, Insightful)
It is an evil practice born of corporate interests, just because it could be evilier does not mean we should turn a blind eye to it.
Blur, Song 2 (Score:2)
I'm not worried. (Score:5, Funny)
Re: (Score:3)
OMG!!! You're that guy [linux-noob.com]!!!
What's the point? (Score:4, Interesting)
Chrome won't run Java anymore. Soon IE won't either.
What exactly are they trying to accomplish here?
Re: (Score:2)
Marissa to become another VP in Uncle Larry's Stable of Executives from Other Companies?
Better than Ask (Score:2)
I wonder why Oracle are doing this (Score:3)
I got so fed up of Adobe loading their updates will crapware like McAfee that I stopped installing it altogether. Likewise I've avoided other products which have started bundling stuff in their installers. I'm sure Oracle are compensated for promoting Yahoo from their installer but the reputational damage will suffer could be immense.
Re: (Score:3)
Because you aren't actually a customer of Oracle. You aren't paying them money and most likely you're using Java to run 3rd party software.
Just download the JDK it isn't bundled with crapware, or at least hasn't been.
Yahoo is today's RealPlayer (Score:2)
What sucks is Yahoo sucks. I didn't even notice the browser change by the logo, but I did notice it when it gave bad search results. Changed back to Google, and results were accurate again.
Yahoo, you are the RealPlayer of the search world. File Chapter 5.
Stuff that matters? (Score:2)
Re: (Score:2)
Why is this news? (Score:2)
Re: (Score:3)
How long have you known about Yahoo's deal with Oracle. Forever? Or is this recent? If it's recent, it is news by definition.
But more likely, you just consider that you are above accidentally installing a toolbar. That's good, but not everyone is. I've had computers to "fix" when people couldn't access their "Facebook" (their name for the entire internet and their browser). Fire up IE, and the screen is toolbars from top to bottom.
In an effort to help them, it's really nice to
Sleazy as fuck (Score:4, Insightful)
And (Score:5, Informative)
Not just Java installers... (Score:3, Interesting)
.
imo, anyone who blindly accepts the default installer options gets the malware they deserve.
Re: (Score:3)
To the poster (Score:4, Funny)
If you're going to include an obscure technology like Java in the article. Could you please explain what it is?
Hopefully, the old pre-opt-out will work (Score:5, Informative)
In Windows, use the Java Control Panel and select the "Advanced" tab.
At the very bottom of the list, completely out-of-sight unless you scroll aaaaaaal the way down, in a category called "Beware of the Leopard"... no, sorry, I meant "Miscellaneous"... there's a checkbox labeled "Suppress sponsor offers when installing or updating Java".
Of course, by default it's not checked. Because money.
But check it and apply or "OK" the settings change. In the current implementation, this prevents bundling the Ask.com malware with Java upgrades -- it's a pre-opt-out, and you never have to think of it again. (At least, until Oracle decides the option should auto-magically unset itself when the user's not looking. Because money.)
Assuming this option continues to exist in future Oracle Java versions and is honored for the Yahoo tie-in, this would alleviate the pre-opt-in crapware issue. Big assumptions, of course, because Oracle.
(Or alternately, don't install Java [betanews.com] if you don't actually need it. Or install OpenJava rather than Oracle's.)
Another Yahoo goodie! (Score:4, Interesting)
On Yahoo Email, there are mandatory ad emails showing on top and one cannot delete those.
If you click on one under Firefox, a link opens but is blocked.
Looks the more BS they produce the more desperate they get and produce even more crap.
Digging their own grave it seems.
Maybe it has to do with the "upper crust people" beeing control freaks and out of touch with reality when things don't go like they should in their minds.
Java non-NPAPI plugin??? (Score:3)
Does this mean that Oracle will be producing a Java plugin thats compatible with Chrome???
Aside from the issues of self-signed certificates and strict requirements on whitelisting this might actually make it possible for me to use Chrome to do my job (which involves connecting to remote KVM/iDRAC/ILO systems which require a Java client).
Otherwise, yeah no way Oracle, no one is going to install Java any more if they are using Chrome and don't really REALLY need Java (in which case they'll use a different browser).
In other words, if Oracle doesn't produce a non-NPAPI plugin, then client side Java will be in the wastebasket of history soon; its only a matter of time before its no longer supported in other browsers than Chrome.
Idiots. (Score:3, Insightful)
Yes, because tricking people and manipulating their settings without their full acknowledgement is a sure fire way to gain brand loyalty. Idiots.
Friendly OpenJDK Upstream? (Score:3)
Does anyone know if there exists, or can we start, a project like this:
(1) They distribute binaries for Windows (32-bit and 64-bit). Other platforms would be awesome, too, but Linux already has great OpenJDK support in package managers, so that may not even be necessary. Windows is the platform where it really sucks.
(2) They have a custom-designed updater that schedules itself to run every so often (say, every 2 weeks); launches; checks for an update; and then *EXITS* if it doesn't find one. If it does find one, it gives the user a simple "Yes/No/Ask Later" prompt: if they pick Yes, it'll silently remove the old OpenJDK version and install the new one; if they pick "No" it'll skip that version and only remind them when the next update comes out; and it'll bug them next week if they click "Ask Later". Once it finishes whatever it has to do, it EXITS, rather than remaining in virtual memory forever like the Oracle Java updater.
(3) No adware. All components free and open source software. Installer should only depend on FOSS (no InstallShield, etc.).
(4) Gives user the option to enable/disable Java plugins for each browser detected to be installed on the system, at install-time, and can be configured after install via a config GUI. Default should be to NOT install the Java plugins, since they have had a history of severe vulnerabilities, but users are free to request their installation anyway.
(5) Installer should come in two forms: a "net installer" that has a tiny size (1 MB or less) and only downloads the requested components at runtime (allowing user to select whether they want the source code, the JDK or just the JRE, etc.), and an "offline installer" that contains the entire kitchen sink and does not need Internet connectivity (for environments behind a restrictive proxy, or no network connection).
(6) User should have the option to install OpenJDK without admin rights! If they don't have admin rights, stick it in AppData\Local and put the plugins in a similarly user-scoped folder (not possible with IE as far as I know, but should work with Chrome and Firefox). Auto-detect whether the user can be an admin, and only give the UAC prompt if the user's account can actually accept the prompt; otherwise, fall back to "non-admin" install.
Gee, sounds like if nothing like this exists, I have the requirements / design doc in my head...
If I disappear in my room for a week and don't emerge until this thing is on github, tell my family and my cat that I love them.
When people ask me to help them get java working (Score:3)
So I basically danced around my office when I read that chrome and firefox were pretty much killing Java as an extension/addon.
But adding malware to their install just makes me laugh at how stupid these MBAs are. Yes in the next few quarters they will make lots of money. But how many quarters before people will have significantly reduced their downloads?
Also for Yahoo, I hate Ask.com for their trashy approach to getting users. Make a great product and then people might come. Fooling them into coming is just scummy. So now people will lump Yahoo in with the various sites that over the years have tried to use deception as their marketing tool.
For those of you out there all touchy about Java, my comments are not about the Java language, but the java product.
This is really big news (Score:4, Insightful)
I think we're missing the real story here.
The article is suggesting that Java update _actually works_ and is capable of _updating Java_.
I can't remember the last time that was true.
Turning off Java's add-on crapware (Score:5, Interesting)
[HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft]
"SPONSORS"="DISABLE"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\JavaSoft]
"SPONSORS"="DISABLE"
The screen with the checkboxes does not even appear.
Re:Hardly anything new (Score:5, Insightful)
Re: (Score:2)
Has been for as long as that Ask.com piece of shit has been snuck in with a pre-selected check box.
Pretty much as soon as Oracle took over as far as I can tell.
Re: (Score:2)
Re: (Score:3)
No, java is something that people want/need which is supplied with bundled crapware that you have to remember to opt out of.
What TFA doesn't make clear is whether this new yahoo thing will be instead of the ask toolbar bundling or in addition to it.
Re:Google is too wild . . . (Score:4, Funny)
maybe try turning safe search back on and not searching with such ambiguous keyword combinations as "giant cock"?
Re: (Score:3)
maybe try turning safe search back on and not searching with such ambiguous keyword combinations as "giant cock"?
Have you used Google lately? A couple of years ago they began to also search for "similar" words, including abbreviations and acronyms. Which, depending on the subject, can lead to totally off-topic results. E.g. https://www.google.de/search?q=Wisconsin+Tourism+Federation [google.de] - WTF indeed. Their search-by-data is also often useless (esp. when looking for older stuff), because most sites now include links to current articles even on ancient pages, which of course drown out the actual content.
Re: (Score:2)
Did you really have to use a .de domain to try and change the output so much? If you use the normal .com domain you get normal results. It is almost as though the German root level does not care much about a state in the US's tourism federation, or the EUs rules on how these search companies must censor results may be in play.
Even still all the WTF messages are relevant because the acronym was a cause for it to change the name of the federation.
Re:Google is too wild . . . (Score:5, Informative)
If you try to access google.com from Germany, it automatically redirects you to google.de.
If you want the "original" Google from abroad, you need to type google.com/ncr.
This link should work the same all over the world :
https://www.google.com/?gws_rd... [google.com]
Re:Google is too wild . . . (Score:4, Informative)
Which, depending on the subject, can lead to totally off-topic results
What is off-topic about those results?
The organisation in question's website - which is no longer called the Wisconsin Tourism Federation - comes second in the list, and only because you've used google.de. Use its new name, or use google.com, and it comes top.
Seems like it's working perfectly to me.
Re: (Score:2)
Maybe if you spelled it correctly, that would help, instead of an entirely different word
Re: (Score:3)
Windows doesn't come with Java by default.
Re: (Score:2)
Why did you word it differently? Both operating systems have Java available but neither comes with it by default.
Re: (Score:2)
Re:No Java (Score:4, Informative)
Default installations of OS X don't have Java anymore, which is why your link exists in the first place.
Re: (Score:2)
This isn't a Chrome issue. This is a Java issue.
Re: (Score:3)