News

InfoWorld20y
Write custom appenders for log4j
One of the better logging systems around is the Apache Software Foundation’s log4j project. It’s more flexible and easier to use than Java ... on their names. For example, a logger named ...
InfoWorld14y
Using Generic ‘log’ Methods in Java Logging
When developing Java applications, it is easy to get used to invoking logging on the provided logger via its log level-specific methods. For example, Log4j ... methods have names that explicitly ...
ZDNet3y
Log4j RCE activity began on December 1 as botnets start using vulnerability
The usage of the nasty vulnerability in the Java logging library Apache Log4j that allowed unauthenticated ... or remove the JndiLookup class from the classpath used by Java.
Threat Post3y
Log4J-Related RCE Flaw in H2 Database Earns Critical Rating
Critical flaw in the H2 open-source Java SQL database are similar to the Log4J vulnerability, but do not pose a widespread threat. Researchers discovered a bug related to the Log4J logging library ...
ZDNet3y
Security warning: New zero-day in the Log4j Java library is already being exploited
A newly discovered zero-day vulnerability in the widely used Java ... log files for any services using affected Log4j versions. If they contain user-controlled strings, CERT-NZ uses the example ...