Java Security Warning

With the latest version of Java, I am getting a security warning from java everytime I try to play the computer (ex finish a tactic vs computer) asking me if I want to run the application.  Googled it and still no luck on how to make it always accept it as trusted.  Im running Chrome.  Any ideas?

nope

I don't use Java in my browser, so I can't say from experience. But if I've read the Java info correctly, if the Java app has an unsigned certificate, you can't do anything about it except to accept the risk every time the app runs.

https://www.java.com/en/download/help/appsecuritydialogs.xml

Also, you should be aware that Java doesn’t check the validity of application certificates (Edit - Oops, I just noticed near the bottom of the Java help page that starting with Java 7u25 (and later), Java will check certificate validity. OK, one problem down.):

https://krebsonsecurity.com/2013/04/java-update-plugs-42-security-holes/#more-19918

https://krebsonsecurity.com/2013/09/researchers-oracles-java-security-fails/#more-22463

Pretty sure the newest version of java does that for all java aps because firefox says this version of java itself can't be trusted.

Ooo... NOW this thread is starting to get interesting...

The other problem is that it takes a long time to load when I check trust and run.

yup, the newest java is a pain. I just uninstalled it, and reinstalled older java from early Sept 2013. Here's the link if you want to do what I did, which I don't have the technical expertise to 'recommend' but I just can't be bothered with having to sign everytime I use java.  Here's the link to update 40 from early sept. Make sure after you install it you uninstall the newer version, update 45. 

http://www.oldapps.com/java.php

and note that if you're using chrome (I am) you must use 32 bit java, even if your computer is 64 bit (which most are these days) chrome is 32 bit, so choose 32 bit java update 40 if you're using chrome.

you shouldn't compromize with security by downgrading just because you don't want to click accept once.

yes, I'm not recommending it, I'm just letting people know that the option is there to use earlier versions of java, and oracle provides for that option. 

I absolutely agree. It's risky enough to be using Java in your browser, but to revert to a previous version of Java is really asking for it.

https://krebsonsecurity.com/2013/10/java-update-plugs-51-security-holes/#more-23109

thanks you guys. I really don't understand these things at all. I just was bothered this afternoon by obviously a new java permissions request, and I thought I'd go back. If you really think I should go with the new java...I will. Alright, I take back what I wrote above. I don't know anything about computer security. Nada. 

you scared me enough. I just went and 'upgraded' to the latest java, upgrade 45. Best not play with fire if I don't know anything about these things. 

The problem isnt just having to click yes once, it takes about a minute to load, which is really annoying.  Before it would load immediately.  It did get a lot better by lowering the security setting in Java, but then again you are taking more of a risk with other applications

Java is annoying.

You could try running their uninstall-tool which removes some stuff if older-versions are still on your pc.

http://www.java.com/en/download/uninstallapplet.jsp

The actual message I get in Chrome is:  "Running unsigned applications like this will be blocked in a future release because it is potentially unsafe and a security risk".

This implies to me that chess.com needs to "sign" thier java code.  I don't believe this is that hard to do but probably has to be ranked along with other issues.

Wouldn't worry get similar message when running FIDE online arena! )

Ever since the U.S. government sent this out:

http://news.yahoo.com/us-government-tells-computer-users-disable-java-010200371.html

and combined with the weird coincidence where my virus checker pretty well only found Java based malware, I've uninstalled Java.

These days with no Java on my computer, I occasionally get this redirect, which I know is fake since I don't have Java...

http://malwaretips.com/Thread-FAKE-Java-update-redirects-pop-ups