IMPERIUM News and Views
News from the Front

On News and Views, you will find topics we find interesting, and want to share with you.

We shall include news about emerging Standards, the latest in Enterprise Technologies, and the occasional item about our own initiatives.

During 2005, Imperium will be moving into the software products arena, so expect to hear some exciting news regarding this initiative - you won't be disappointed!
Sun's Menagerie - Tiger, Mustang and Dolphin

It's all happening at Sun Microsystems.

Having just released the latest JDK - J2SE 5.0 a.k.a. "Tiger" - for which the Source Code is also available on two different licence schemes, Sun are releasing binary snapshots and source code for "Mustang" (6.0) and we're even hearing some murmers about "Dolphin" (7.0)!

Since the first Mustang snapshot of 17 November 2004, we have seen five more, with the most recent (build b16) released on 17 December 2004 containing 8 new features and fixing 33 bugs.

Right now, it's impossible to see what the most exciting features of Mustang and Dolphin will be. The Mustang builds mostly contain bug fixes, but we expect future builds to change the balance towards new features.

We were sad to see the most exciting offering of Tiger - Generics - rather neutered by the fact that the very promising possibility of variants was aired with one Early Access release, then withdrawn with the next. It's true that the concepts of covariance and contravariance require thought, but we felt that the benefits, especially in bringing arrays in line with Collections, were worth the extra effort.

Let's hope the guys at Sun have something really exciting to offer!

CERT Advisory - Our Current Favourite

What's the problem? To quote the CERT Advisory "The Microsoft Internet Explorer HTML Help ActiveX control is not restricted by the Local Machine Zone Lockdown feature. This can allow an attacker to execute script in the Local Machine Zone."

The danger is that, apparently innocent actions can lead to IE executing an attacker's code: "By convincing a user to perform a drag and drop operation, such as dragging the Internet Explorer scroll bar or selecting text, an attacker could cause arbitrary script to execute in the Local Machine Zone. The full impact of executing script in the Local Machine Zone is unknown at this time. Depending on the patch level of the target machine, it may be possible for the script to download and execute arbitrary code."

The complete story is available as CERT Vulnerability Notice 939688

Hot Topics New One Day Crash Courses

We constantly find that our clients have heard of new technology features and concepts, but have no time themselves to do the necessary research, and no access to training courses which address these issues.

As a result, we are offering an array of One Day Crash Courses in subjects as fundamental as Java Basics, as exciting as Java Performance Tuning, and as leading edge as Quantun Computing.

If you're interested in new Java Language features, such as Generics (JSR-014) and explanations of the work on problems with the Java Memory Model (JSR-133), you need our Course 106 - Generics and other Java 1.5 New Features

Copyright © 2005 Imperium Computing Consultants Ltd. All rights reserved