Vincenzo,
Better to use 2.17.1. No system properties or anything should be necessary.
-chris
> On Jan 11, 2022, at 11:06, Vincenzo D'Amore wrote:
>
> Hi Thomas,
>
> Why the 8.11.0?
> I read that the latest stable version is 8.11.1
> https://solr.apache.org/docs/8_11_1/changes/Changes.html#v8
--Original Message-
From: Vincenzo D'Amore
Sent: 11 January 2022 21:48
To: users@solr.apache.org
Subject: Re: Regarding Log4j Vulnerability in Solr-8.2.0
[External]
BTW, if you want add the log4j2.formatMsgNoLookups=true system property
Pay attention to how the solr "include files&
BTW, if you want add the log4j2.formatMsgNoLookups=true system property
Pay attention to how the solr "include files" are configured. You have to
explicitly uncomment the lines:
./bin/solr.in.sh:# SOLR_OPTS="$SOLR_OPTS -Dlog4j2.formatMsgNoLookups=true"
./bin/solr.in.cmd:REM set SOLR_OPTS=%SOLR_OP
Hi Thomas,
Why the 8.11.0?
I read that the latest stable version is 8.11.1
https://solr.apache.org/docs/8_11_1/changes/Changes.html#v8.11.1.bug_fixes
With the bug fix: Update Log4J to 2.16 (Mike Drob, janhoy)
On Tue, Jan 11, 2022 at 4:40 PM Thomas Heldmann <
thomas.heldm...@bsb-muenchen.de> wro
Dear Raghav,
Do I understand you correctly that you want to upgrade from Solr 8.2.0 to Solr
8.11.0, for example?
First of all, you should have a look at the Solr Upgrade Notes
(https://solr.apache.org/guide/8_11/solr-upgrade-notes.html) and run some tests
on a local PC to find out whether your
Hi Team
For Solr side mitigation for log4j, we have manually updated the log4j-c ore
and log4j-api files to latest versions (2.17.1) and have done
(Linux/MacOS) Edit your solr.in.sh file to include: SOLR_OPTS="$SOLR_OPTS
-Dlog4j2.formatMsgNoLookups=true"
this mitigation step as well as mentioned
