telekom-security/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-07-02 01:27:27 -04:00
Code Issues Packages Projects Releases Wiki Activity

remove log4j JndiLookup Class

Browse Source
This commit is contained in:
t3chn0m4g3
2021-12-13 10:35:22 +00:00
parent b76f0f109f
commit 0ef2e89cac
1 changed files with 4 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
docker/elk/logstash/Dockerfile
View File

@ -14,7 +14,8 @@ RUN apk -U --no-cache add \
curl \ curl \
libc6-compat \ libc6-compat \
libzmq \ libzmq \
nss && \ nss \
zip && \
apk add --no-cache -X http://dl-cdn.alpinelinux.org/alpine/edge/community openjdk16-jre && \ apk add --no-cache -X http://dl-cdn.alpinelinux.org/alpine/edge/community openjdk16-jre && \
# #
# Get and install packages # Get and install packages
@ -35,6 +36,8 @@ RUN apk -U --no-cache add \
/usr/share/logstash/bin/logstash-plugin install logstash-output-gelf && \ /usr/share/logstash/bin/logstash-plugin install logstash-output-gelf && \
/usr/share/logstash/bin/logstash-plugin install logstash-output-http && \ /usr/share/logstash/bin/logstash-plugin install logstash-output-http && \
/usr/share/logstash/bin/logstash-plugin install logstash-output-syslog && \ /usr/share/logstash/bin/logstash-plugin install logstash-output-syslog && \
# Remove log4j (https://discuss.elastic.co/t/apache-log4j2-remote-code-execution-rce-vulnerability-cve-2021-44228-esa-2021-31/291476)
zip -d /usr/share/logstash/logstash-core/lib/jars/log4j-core-2.* org/apache/logging/log4j/core/lookup/JndiLookup.class && \
# #
# Add and move files # Add and move files
cd /root/dist/ && \ cd /root/dist/ && \