Is it possible to eliminate log4j.jar from the directory /usr/share/java on Rhel7/Tomcat7, as part of the process of removing Log4J vulnerability?

java

asked 2023-05-22 03:17:58 +0000

nofretete
31 ●3 ●5

edit retag flag offensive close merge delete

add a comment

1 Answer

Sort by » oldest newest most voted

answered 2023-05-22 03:33:01 +0000

lalupa
21 ●1 ●1

No, it is not recommended to eliminate log4j.jar from the directory /usr/share/java on Rhel7/Tomcat7 because log4j might be required for the proper functioning of your applications. Instead, it is recommended to upgrade to the latest version of log4j, which fixes the vulnerability or apply the suggested mitigation measures until the patch is available.

edit flag offensive delete link

add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account. This space is reserved only for answers. If you would like to engage in a discussion, please instead post a comment under the question or an answer that you would like to discuss

Add Answer

Question Tools

Stats

Asked: 2023-05-22 03:17:58 +0000

Seen: 9 times

Last updated: May 22 '23

Is it possible to eliminate log4j.jar from the directory /usr/share/java on Rhel7/Tomcat7, as part of the process of removing Log4J vulnerability? edit

1 Answer