nanog mailing list archives

Re: Log4j mitigation

From: bofh139 <baconzombie () gmail com>
Date: Mon, 13 Dec 2021 13:28:53 +0000

Now we have the long journey from Java, Ldap, DNS, Birds and Coffee Cups

behind us. Does anyone else have any advice on prevention?

There is a good Mega Thread over on /r/BlueTeamSec.
https://www.reddit.com/r/blueteamsec/comments/rd38z9/log4j_0day_being_exploited/

Also if you use Twitter, then follow GossiTheDog for lots of other links/info.
https://twitter.com/GossiTheDog

-- 


BaconZombie

55:55:44:44:4C:52:4C:52:42:41

LOAD "*",8,1

Current thread:

Re: Log4j mitigation, (continued)
- - - Re: Log4j mitigation Jörg Kost (Dec 13)
    - RE: Log4j mitigation Jean St-Laurent via NANOG (Dec 13)
    - Re: Log4j mitigation Joe Greco (Dec 13)
    - Re: Log4j mitigation Jörg Kost (Dec 13)
    - Re: Log4j mitigation Joe Greco (Dec 13)
    - Re: Log4j mitigation Jörg Kost (Dec 13)
    - Re: Log4j mitigation Joe Greco (Dec 13)
    - Re: Log4j mitigation Jörg Kost (Dec 13)
    - Re: Log4j mitigation Joe Greco (Dec 13)
    - Re: Log4j mitigation Karl Auer (Dec 13)
    - Re: Log4j mitigation bofh139 (Dec 13)
    - Re: Log4j mitigation Hank Nussbacher (Dec 13)
    - Re: Log4j mitigation Karl Auer (Dec 13)
    - RE: Log4j mitigation Jean St-Laurent via NANOG (Dec 13)
    - Re: Log4j mitigation A Crisan (Dec 13)
    - Re: Log4j mitigation Mike Hammett (Dec 13)
    - Re: Log4j mitigation Karl Auer (Dec 13)
    - Re: Log4j mitigation Andy Ringsmuth (Dec 13)
  - Re: Log4j mitigation Owen DeLong via NANOG (Dec 13)
    - Re: Log4j mitigation Doug McIntyre (Dec 14)
    - Re: Log4j mitigation Tyler Conrad (Dec 14)

(Thread continues...)