Log4Shell vulnerability

*McDuff* · 12-11-2021, 03:14 AM

Does this potentially affect us and does FQ take precautions or sending out warnings-updates how to patch this?

**Kevin** · 12-11-2021, 01:33 PM

No, this would not be a problem for us. This is a service used to log messages from java applications (running on the server not the browser). It has been extended to other things too but we don't allow java applications running on the sever so we have never installed any of the log4 softwares. It is made by the same people as apache but it isn't part of the apache web server software.

*McDuff* · 12-14-2021, 05:00 AM

Kevin, thanks for explaining this