# To fix the Log4j 2 vulnerability, we have to add -Dlog4j2.formatMsgLookups=true in catalina.sh and iiq file.
# Navigate to iiq path
cd /opt/apache/bin
# Update the JAVA options (vi iiq)
JAVA_OPTS="-Xms128m -Xmx256m -Dsun.lang.ClassLoader.allowArraySyntax=true -Djava.awt.headless=true -Dlog4j2.formatMsgLookups=true"
# Save & exit (:wq!)
# Navigate to catalina.sh path
cd /opt/apache/webapps/idenityiq/WEB-INF/bin
# Update the JAVA options (vi catalina.sh)
rem Register custom URL handlers
rem Do this here so custom URL handles (specifically 'war:...') can be used in the security policy
set "JAVA_OPTS=%JAVA_OPTS% -Djava.protocol.handler.pkgs=org.apache.catalina.webresources -Dlog4j2.formatMsgLookups=true"
# Save & exit (:wq!)
# Restart the server.
./shutdown.sh
./startup.sh
No comments:
Post a Comment