https://tferdinand.net/en/tags/java/Recent content in Java on Teddy FerdinandHugoen-USMon, 20 Dec 2021 20:37:40 +0000https://tferdinand.net/en/log4j-from-the-eye-of-the-storm/Mon, 20 Dec 2021 20:37:40 +0000https://tferdinand.net/en/log4j-from-the-eye-of-the-storm/<p>Unless you live in a cave, you couldn’t miss the last few days the <a href="https://logging.apache.org/log4j/2.x/security.html">flaws discovered on the Java log4j library</a>.</p> <p>I’m not going to make another post talk about this flaw, but rather to talk about my experience in the field on the impact of this flaw at the operational level.</p> <h2 id="the-importance-of-having-an-up-to-date-inventory">The importance of having an up-to-date inventory</h2> <p>I talked about this on Twitter (in French), but for me, this flaw highlights the fact that many companies lack an up-to-date inventory of their resources.</p>