Jamf Nation Community

Elies · 12-10-2021

hello together!A zero day exploit has been found which affects the latest version of jamf.https://www.lunasec.io/docs/blog/log4j-zero-day/This exploit affects the java logger log4j, which is used by Jamf. If you are hosting an onpremise version, take...

Elies · 09-30-2020

Hello Jamf community! I wanted to share my experiences about updating an onpremise instance in Docker with you, because I didn't find any information about it on the net. But first you should make a backup, because I only share my personal experience...

Elies · 12-13-2021

Depends on the content of the script. Can you read powershell and understand what is being done there?

Elies · 12-13-2021

Where did you find this file?

Elies · 12-13-2021

I have applied the patch from Jamf and can confirm that JNDI code from the log is no longer triggered.log4j2.formatMsgNoLookups: true is no longer necessary if you are on 10.34.1.If you want to test it yourself, generate a domain at http://www.dnslog...

Elies · 12-10-2021

Specific for Jamf Pro:Edit this file: webapps/ROOT/WEB-INF/classes/log4j2.component.propertiesand add log4j2.formatMsgNoLookups: truerestart your jamf instance.

Elies · 12-10-2021

No. Currently only workaround is to start your server with log4j2.formatMsgNoLookups set to true, or update to log4j-2.15.0-rc1 or later. If you want to be updated you can check this blog post for possible mitigations:https://www.lunasec.io/docs/blog...

Jamf Nation Community

User Statistics

User Activity

RCE 0-day exploit found in log4j

Jamf onpremise Docker update

Re: RCE 0-day exploit found in log4j

Re: RCE 0-day exploit found in log4j

Re: RCE 0-day exploit found in log4j

Re: RCE 0-day exploit found in log4j

Re: RCE 0-day exploit found in log4j