> Waiting smugly, I gather ;->
;) mostly because my last two days were completely taken up with client and
user requests on log4j.
A blog article on Open Source software and commercial users, worth reading:
https://blog.filippo.io/professional-maintainers/
Jonathan Robie schrieb am Mo., 13.
On Mon, Dec 13, 2021 at 10:18 AM Christian Grün
wrote:
> I was waiting for that question ;)
>
Waiting smugly, I gather ;->
Jonathan
Hi Christian,
So you already knew :)
Very glad to read your answer, the exploitation attempts are already
showing up in the logs.
thanks, this helps a lot,
Marc
On Mon, 13 Dec 2021, Christian Grün wrote:
> Hi Marc,
>
> I was waiting for that question ;)
>
> All fine, BaseX uses a custom logge
Hi Marc,
I was waiting for that question ;)
All fine, BaseX uses a custom logger, as well as Jetty does [1,2].
You may need to check your setup, though, if you use Tomcat as web
server or any additional search index applications like Solr or
Elasticsearch. ES is only susceptible to information l
Does Basex (9.x or 8.x) use Log4j in any of its components?
If not, should one still worry about the JRE?
Regards,
Marc
5 matches
Mail list logo
