No it is not required and handled in new release of log4j2. That JVM property is quick remedy to resolve the issue with vulnerable log4j2 versions.
On Wed, 5 Jan 2022, 23:47 Rajath Banagi Ravindra, < rajath.ravind...@mindtree.com> wrote: > Hi, > > > > I have once question regarding the Log4J vulnerability fix for 7.5 version > of solr. We have updated Log4J file with latest version of log4j 2.17.1 and > solr is loading fine. Do we need to add the below config also, please > confirm, > > - (Windows) Edit your solr.in.cmd file to include: set > SOLR_OPTS=%SOLR_OPTS% -Dlog4j2.formatMsgNoLookups=true > > > > Regards > > Rajath > > ------------------------------ > > http://www.mindtree.com/email/disclaimer.html >
