Thanks Aman for quick update, Regards Rajath ________________________________ From: Aman Tandon <amantandon...@gmail.com> Sent: Thursday, January 6, 2022 6:16 AM To: Rajath Banagi Ravindra Cc: users@solr.apache.org Subject: Re: Solr 7.5 log4j fix
* This e-mail originated outside of Mindtree. Exercise caution before clicking links or opening attachments * No it is not required and handled in new release of log4j2. That JVM property is quick remedy to resolve the issue with vulnerable log4j2 versions. On Wed, 5 Jan 2022, 23:47 Rajath Banagi Ravindra, <rajath.ravind...@mindtree.com<mailto:rajath.ravind...@mindtree.com>> wrote: Hi, I have once question regarding the Log4J vulnerability fix for 7.5 version of solr. We have updated Log4J file with latest version of log4j 2.17.1 and solr is loading fine. Do we need to add the below config also, please confirm, * (Windows) Edit your solr.in.cmd file to include: set SOLR_OPTS=%SOLR_OPTS% -Dlog4j2.formatMsgNoLookups=true Regards Rajath ________________________________ http://www.mindtree.com/email/disclaimer.html<https://apc01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.mindtree.com%2Femail%2Fdisclaimer.html&data=04%7C01%7CRajath.Ravindra2%40mindtree.com%7C77b438deb4dc41b9651508d9d0adec3f%7C85c997b9f49446b3a11d772983cf6f11%7C0%7C0%7C637770268149575632%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C2000&sdata=4vP%2BMbTN6j0SvLVm9U7A4PtMdDQYWPnZgT5WDML7ac4%3D&reserved=0>
