Quick Fire Java: Java After Log4j

Jakarta EE

The second episode in our ‘Quick Fire Java’ video series is out!

We discuss Log4j, security process and prioritization, and how Payara dealt with the vulnerability.

All in a concise 10-minute video.

TheLog4jvulnerability,Log4Shell, was disclosed in early December 2021 and the repercussions have been far-reaching.

Rudy,ourProduct Managerat Payara, explains more about what this actually means and about the wider implications of the incident. He also responds toBreachQuest’sJake Williams for Threatpost, who claimed “being exploited through an internet-facing system running vulnerable log4j at this point is a leadership failure, not a technical one.”Watch the video to find out whether Rudy agrees.

It’s worth stressing that we have checked all Payara products and they are not affected by the vulnerability, but we recommend that you upgrade to the latest version of the library if you ARE using it. Read morehere.

Watch the video now:

 

This is the second in a series where we’ll ask key questions on subjects that matter to our community, for example aroundJava,Jakarta EE(previously Java EE), MicroProfile, DevOps, DevSecOps, database management and cloud. We’ll quiz an expert each month to create a concise 10-minute video.

Make Sure You Are Following Our YouTube for Updates:

Comments (0)

Post a comment

Your email address will not be published. Required fields are marked *

Payara needs the contact information you provide to us to contact you about our products and services. You may unsubscribe from these communications at any time. For information on how to unsubscribe, as well as our privacy practices and commitment to protecting your privacy, please review our Legal & Privacy Policy.

Related Posts

Payara promotional graphic showing transition from Spring to Jakarta EE, including technology logos, a code icon and arrows leading from Spring to Jakarta EE. 6 minutes
Jakarta EE

From Spring Boot To Jakarta EE 11: How Payara Starter Eases The Transition

If you’ve been living in the Spring ecosystem, you’re used to fast project setup. Spring Initializr gives you a […]

The Imperative for Legacy Java Modernization in Banking Cover 2 minutes
Security

The $57 Billion Problem: Why Banking’s Java Legacy Crisis Demands Immediate Action

How outdated Java systems are draining budgets and throttling innovation across financial services? Let’s dig in in this blog […]

Interview The software that could be putting your cyber-security at risk 2 minutes
Security

Middleware Cyber Security: The Hidden Risk Every C-Suite Should Prioritize

When tackling cyber risk at the strategic level, it pays to learn from trusted leaders. Steve Millidge, CEO and […]