A new open source package called Lightning Rod will help to close security exploits in Adobe’s dirty Flash code. A presentation made at the 26th Chaos Communication Congress showed that the package does its job by reviewing incoming code before the browser executes it. Heise Online is reporting that this method can block over 20 different known attacks and can even be used to filter out malicious JPG attacks. As more vulnerabilities are discovered they can be added to Lightning Rod to close the breach. This amounts to a virus scanner for Flash code. It’s great to have this type of protection but why can’t Adobe handle its security problems?
[Thanks das_coach]
I just received a security update from adobe for flash, seems they are trying to work out their ends.
What, no glasses with content filters?
well, if adobe were to release flash as a standardized spec… :p
yay for slow security updates of proprietary systems
its actual called blitzableiter not lightning rod, posting every link so they goes though a crappy google translater should have been left as an excercise to the read imho.
The word “Lightning” is spelled wrong in the title of this post. Just FYI.
@Zach: Thanks, fixed.
@rachael: “Blitzableiter” -means- lightning rod in English…I would imagine the translator link is for those of us who still speak English as our first language (unfortunately there’s no German -> Java translator yet…)
Auf Wiedersehen.
Man oh man – you really opened up my eyes! The Internet has so much information, I get so caught up in so many different directions, it so hard to figure it all out. Thanks again for the post! Happy New Years!
There is a an English version of the Heise article at http://www.h-online.com/security/news/item/26C3-Protection-against-Flash-security-holes-893689.html