zzz/i2p.i2p
1
0
Fork 0
forked from I2P_Developers/i2p.i2p
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Files
c4cfe420a61fbcafb7b619d9315ba5f78e17c53c
i2p.i2p/apps
History
idk c4cfe420a6 disable any chance of JNDI lookups in log4j.properties file by setting %m{nolookups}. I don't think we're actually vulnerable to CVE-2021-44228 if I'm understanding correctly, by default it doesn't seem like we actually use log4j for much of anything and we don't do much logging of arbitrarily crafted remote inputs, but also it seems like this JNDI lookups thing is way more trouble than it could possibly be worth to us. Maybe it's a good idea to make sure it's turned off by default.
2021-12-10 21:01:37 -05:00
..
addressbook
admin
BOB
desktopgui
DTG: Add menu items to control notifications
2021-12-05 06:38:28 -05:00
i2pcontrol
i2psnark
i2ptunnel
i2ptunnel: Refactor UDPTunnel, Streamr, and SOCKS UDP for I2CP ports
2021-12-08 13:05:27 -05:00
imagegen
jetty
disable any chance of JNDI lookups in log4j.properties file by setting %m{nolookups}. I don't think we're actually vulnerable to CVE-2021-44228 if I'm understanding correctly, by default it doesn't seem like we actually use log4j for much of anything and we don't do much logging of arbitrarily crafted remote inputs, but also it seems like this JNDI lookups thing is way more trouble than it could possibly be worth to us. Maybe it's a good idea to make sure it's turned off by default.
2021-12-10 21:01:37 -05:00
jrobin
ministreaming
proxyscript
routerconsole
Build: Add missing @Override annotations (dep-ann lint)
2021-12-07 15:33:41 -05:00
sam
streaming
susidns
susimail
systray