Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I'm finding this confusing as well. I write some Java programs for my employer. I just use the SDK/JDK. Most of what we do is use apache came, with spring and apache httpclient with some other non-oracle libraries for processing json or xml.

How do I figure out if we are at risk? We use the apps in-house only.



As was said above - figure out if your IT department is enabling that flag when running your java applications in production.


What do you do if you run commercial code?


The only thing you should really ever do if you have legal concerns: contact legal, and only legal, immediately in a way that preserves attorney-client privilege. If you have concerns about personal legal liability, then contact your own lawyer.


Openjdk is fine for commercial applications. If you have commercial code openjdk will work fine. Just make sure that flag isn't enabled.

Openjdk doesn't have all the same features as the oracle jdk (javafx etc)




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: