New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
log4j - official statement from nextcloud? #30242
Comments
log4j is a Java library. Nextcloud is written in PHP and JavaScript and I do not know of any other Nextcloud component that is written in Java. Maybe you use a Nextcloud App that depends on a Java application, but then again, that is not part of Nextcloud itself. |
This is out of scope; asking if a PHP application is affected by a Java (not Javascript) problem is the same than asking if your car engine problem will affect your bicycle. 😜 Perhaps, if you have any plugins that may employ Java (thinking about OnlyOffice SERVER : https://github.com/search?q=org%3AONLYOFFICE+log4j&type=code) than you may contact the respective editors. But just to be clear here; the default OnlyOffice Documentserver should NOT be affected as log4j is not used in that specific product. More info here too: https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592 |
Out of scope? You are out of scope. Pay Attention. Nextcloud is affected when you have Installed Apps like Fulltext Search. Elastic Search or Apache Solr. Its simple, connect to your Instance and check your Filesystem.
|
Nextcloud would do good by getting off their high horses and explaining to the normal human what they can do and should do. |
Affected when a specific 3rd party component is isntalled. ... |
It's very simple, if someone wrote here the core application without additional apps or service is not affected, I would have accepted that, instead comparisons are made here with cars and bicycles ...
I also make unprofessional comparisons with cars now, if you drive a bomb for a walk in your car and it explodes, is your car affected or not? so please |
Will there be an official statement from nextcloud? My employer insists on a statement that nextcloud is not affected by the log4j-problem.
The text was updated successfully, but these errors were encountered: