Hackernews posts about Log4j
Log4j is an open-source logging library for Java applications that helps developers track and troubleshoot their programs' behavior.
- Building package-level, runtime configurable logging ala Log4j in Go (www.dolthub.com)
- Show HN: Pip Installable DuckDB Extensions (github.com)
- Study shows 38% of Java apps still affected by Log4j vulnerability log4shell (www.theregister.com)
- Securing the Fundamentals: Our Support for Log4j (www.sovereigntechfund.de)
- A Year Later, That Brutal Log4j Vulnerability Is Still Lurking (www.wired.com)
- A Year Later, That Brutal Log4j Vulnerability Is Still Lurking (www.wired.com)
- Dynamically Changing Log4j or logback log levels in Java (prefab.cloud)
- Apache Log4j: The Exploit That Almost Killed the Internet (www.youtube.com)
- Log4j: Why Organizations Are Failing to Remediate This Risk (thenewstack.io)
- Software supply chain security is broader than SolarWinds and Log4j (techcrunch.com)
- Finding the next Log4j – OpenSSF’s Brian Behlendorf on pivoting to a (portswigger.net)
- One Year of Log4j (thenewstack.io)
- Comments on the Cyber Safety Review Board Log4j Event Report (queue.acm.org)
- Show HN: I've open sourced DD Poker (github.com)
- Log4Shell Still Has Sting in the Tail (spectrum.ieee.org)
- Log4Shell Still Has Sting in the Tail (spectrum.ieee.org)
- Log4Shell – Through the scope of a reactive network telescope (blog.apnic.net)
- LogJam Attack [video] (www.youtube.com)
- US govt: Iranian hackers breached federal agency using Log4Shell exploit (www.bleepingcomputer.com)
- Log4Shell Lives (thenewstack.io)
- Log4Shell malware written in D language (www.securityweek.com)
- Iranian hackers use Log4Shell to mine crypto on federal computer system (www.cyberscoop.com)