Hi ALL,
does this new vulnerability affect SoftEther?
cve-2021-44228 -log4jshell
Thanks.
LOG4J cve-2021-44228 - DOES IT AFFECT SOFTETHER?
-
skypurplecloud
- Posts: 1
- Joined: Sat Dec 11, 2021 1:18 pm
-
Retinaquester2
- Posts: 14
- Joined: Sun Jun 03, 2018 11:53 am
Re: LOG4J cve-2021-44228 - DOES IT AFFECT SOFTETHER?
Same question here, since our SE-VPN sever is obvisously exposed, maybe we can have a comment/sticky about this.
I also noticed a increase in portscans so I am worried.
I also noticed a increase in portscans so I am worried.
-
BobVVue
- Posts: 3
- Joined: Thu Sep 20, 2018 3:50 pm
Re: LOG4J cve-2021-44228 - DOES IT AFFECT SOFTETHER?
Also concerned and will patch if something comes out.
In the mean time, don't know if it helps, but used SE Server Manager, I turned off all LOGGING options Under the Manage Virtual Hub -> Log Save Settings. Never have to look at them anyway, so turned off all logging. Don't know if this helps mitigate the Log4j or not. Anyone?
In the mean time, don't know if it helps, but used SE Server Manager, I turned off all LOGGING options Under the Manage Virtual Hub -> Log Save Settings. Never have to look at them anyway, so turned off all logging. Don't know if this helps mitigate the Log4j or not. Anyone?
-
drkrool
- Posts: 97
- Joined: Mon May 25, 2020 4:38 am
- Location: Quebec, Canada
Re: LOG4J cve-2021-44228 - DOES IT AFFECT SOFTETHER?
I don't know if it helps, but it isnt coded in Java avcording to this (graph says in C)
https://www.softether.org/9-about/News/800-open-source
Else you might want to run a scanner in the uncompiled open source code or something to make sure
https://www.softether.org/9-about/News/800-open-source
Else you might want to run a scanner in the uncompiled open source code or something to make sure