Just as an FYI, ElasticSearch does suffer from the Log4j vulnerability. Anyone using ElasticSearch should update to 7.16.1 as the minimum.
As a workaround, you can add '-Dlog4j2.formatMsgNoLookups=true" to the jvm options.
Last edited by DNSB; 12-17-2021 at 04:41 PM.
|