Workaround für Security-Lücke

2021-12-11 18:25:52 +01:00 · 2021-12-11 18:25:52 +01:00 · 65d65c1193
parent 5353c6ee06
commit 65d65c1193
2 changed files with 6 additions and 0 deletions
--- a/files/nolog4j0day.options
+++ b/files/nolog4j0day.options
@ -0,0 +1 @@
+-Dlog4j2.formatMsgNoLookups=true
--- a/tasks/elastic.yml
+++ b/tasks/elastic.yml
@ -29,6 +29,11 @@
    - 'http.max_content_length: 400mb'
    - 'indices.query.bool.max_clause_count: 2000'

+- name: "elastic | Kopiere Fix für CVE-2021-44228"
+  copy:
+    src: nolog4j0day.options
+    dest: /etc/elasticsearch/jvm.options.d/nolog4j0day.options
+
 - name: "elastic | Starte Dienst"
  systemd:
    name: elasticsearch