Jamf Nation Community

FYI, as per the previous "manual" instructions I updated my 10.32.1 on prem instances (two prod, one dev) to 2.17.1 without issue.

https://docs.jamf.com/technical-articles/Mitigating_the_Apache_Log4j_2_Vulnerability.html

Per https://community.jamf.com/t5/jamf-pro/third-party-security-issue/td-p/253740

Jamf Pro is apparently not vulnerable to the issue fixed in log4j 2.17.1. This means we can choose to manually update, or wait for the next Jamf Pro update.

<deleted>

I stopped receiving emails and had to open a support case to get it fixed. but now I know ahead of this weekend that Jamf Pro 10.35 will be rolled out

I'm a big fan of getting alerted to check out the forums (who has time to manually check anyways?) but disappointed with the speed of some of the "critical" road map items for future Jamf release version. Here's to hoping! 🤞

Hello guys, we're also affected by that issue. Wakco's workaround works. We also opened a support case.

Ran into this as well. The specific manifestation for this is that there will be a failure message when trying to upload. The file will actually copy to the server but you will not be able to delete from within Jamf admin. I found that I could, via the web interface, "add" the package that was already on the distribution point manually, and when launching Jamf admin the package would show up, minus the checksum. But the earlier version of Jamf admin works better as already noted.

A bug in a new release seems to be right topic

I think it depends on the release notes. All log4J related and security is always interesting to do the update asap. But 10.35.0 had a very short beta, is suppose it's because of the log4j stuff it was released so quickly.

we see on our on prem a performance degrad of about 30% in comparison to 10.34-2 after updating to 10.35.0.

Also opened a tix for that.

Can you define the performance degradation? Which tasks or processes? All of them?

All of them. The entire GUI is awfully slow. We got some help from support which makes it a little better, but compared to previous release it's very non.reactive.

"It is recommended to use TeamViewer.."  LOL. Love how tech writers switch to passive voice when they tell you that their product is a failure and you're going to have to buy another product to make up for it. 

And team viewer doesn't let you QUICKLY AND IMMEDIATELY push out packages and scripts to dozens of computers without waiting for checkin or dependency on apples servers. Jamf is not going to exist in 5 years. Everyone of it's competitive advantages, things no other product could accomplish are being mothballed. Jamf is only a bit better at doing some things than other products, which are cross platform by the way. If you are only going to support one platform you can't only be marginally better. The bean counters don't care about your marginal productivity. My university is abandoning Jamf quickly; I believe I am only one of two departmental holdouts.

I use Jamf Remote heavily so this will be sorely missed if there is no replacement. I will admit though that when we went completely offsite when covid first hit that it was the kick in the pants to realize that something needed to change since it was useless in that situation. 

What do you mean Jamf remote was useless off site? We used it very heavily while we were working remote. Worked great! You did setup a vpn to access to your remote site first right?

Our users aren't connected to vpn unless they absolutely have to.

So you are trying to use Jamf remote  to control users devices that are also offsight?