Series: Java-Full-Stack-Editorial
14 articles in this series
Java Full-Stack Report February 2023: Editorial
What’s This?
This is my opinion on an important topic of the month.
Archive
| 2022 | Jan |
Editorial
There is no editorial this month. But feel free to read the February one about Log4Shell.
Java Full-Stack Report November 2022: Editorial
What’s This?
This is my opinion on an important topic of the month.
Archive
| 2022 | Jan |
Editorial
There is no editorial this month. But feel free to read the January one about Log4Shell.
Java Full-Stack Report January 2023: Editorial
What’s This?
This is my opinion on an important topic of the month.
Archive
| 2022 | Jan |
Editorial
There is no editorial this month. But feel free to read the January one about Log4Shell.
Java Full-Stack Report November 2022: Editorial
What’s This?
This is my opinion on an important topic of the month.
Archive
| 2022 | Jan |
Editorial
There is no editorial this month. But feel free to read the January one about Log4Shell.
Java Full-Stack Report October 2022: Editorial
What’s This?
This is my opinion on an important topic of the month.
Archive
| 2022 | Jan |
Editorial
There is no editorial this month. But feel free to read the January one about Log4Shell.
Java Full-Stack Report September 2022: Editorial
What’s This?
This is my opinion on an important topic of the month.
Archive
| 2022 | Jan |
Editorial
There is no editorial this month. But feel free to read the January one about Log4Shell.
Java Full-Stack Report August 2022: Editorial
What’s This?
This is my opinion on an important topic of the month.
Archive
| 2022 | Jan |
Editorial
There is no editorial for August 2022. But feel free to read the January one about Log4Shell.
Java Full-Stack Report July 2022: Editorial
What’s This?
This is my opinion on an important topic of the month.
Archive
| 2022 | Jan |
Editorial
There is no editorial for July 2022. But feel free to read the January one about Log4Shell.
Java Full-Stack Report June 2022: Editorial
What’s This?
This is my opinion on an important topic of the month.
Archive
| January 2022 |
Editorial
There is no editorial for June 2022. But feel free to read the January one about Log4Shell.
Java Full-Stack Report May 2022: Editorial
What’s This?
This is my opinion on an important topic of the month.
Archive
| January 2022 |
Editorial
There is no editorial for May 2022. But feel free to read the January one about Log4Shell.
Java Full-Stack Report April 2022: Editorial
What’s This?
This is my opinion on an important topic of the month.
Archive
| January 2022 |
Editorial
There is no editorial for April 2022. But feel free to read the January one about Log4Shell.
Java Full-Stack Report March 2022: Editorial
What’s This?
This is my opinion on an important topic of the month.
Archive
| January 2022 |
Editorial
There is no editorial for February 2022. But feel free to read the January one about Log4Shell.
Java Full-Stack Report February 2022: Editorial
What’s This?
This is my opinion on an important topic of the month.
Archive
| January 2022 |
Editorial
There is no editorial for February 2022. But feel free to read the January one about Log4Shell.
Java Full-Stack Report January 2022: Editorial
What’s This?
This is my opinion on an important topic of the month.
Editorial
Log4Shell Shows The Need for “Trustworthy Java”
What Just Happened?
I believe Log4Shell is Java’s biggest crisis. I reported on it in the “New & Noteworthy” section of my newsletter. A quick recap: The US cybersecurity and infrastructure agency director called Log4Shell “one of the most serious that I’ve seen in my entire career, if not the most serious”. Exploiting it may be as easy as sending an HTTP request to a Java application, with a JNDI link in the HTTP header. The last wide-spread software vulnerability of this magnitude scored 7.5 - Log4Shell scored a 10.