Enabling Long Path Names on Windows | Gary Gregory
Here is how you enable long path names on Windows.| Gary Gregory
This post describes how to mitigate against CVE-2021-44228: In Apache Log4j2 2.0-beta9 through 2.14.1, the JNDI features used in configurations, log messages, and parameters do not protect against an attacker-controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers […]| Gary Gregory
As a maintainer of the free and open source software project Apache Commons, I review pull requests on GitHub. Since the libraries we produce in components like Commons Lang, Commons IO, and Commons VFS are used directly and transitively in countless applications, open and closed source alike, we want to be careful when releasing new […]| Gary Gregory
Here is how you enable long path names on Windows.| Gary Gregory
This post is a follow up to Using ShiftLeft in Open Source, where I was looking to see if I could apply the principle of shift left testing to security. Now that ShiftLeft has a user interface, I want to come back to it and revisit looking at results from the UI instead of pouring […]| Gary Gregory
Applying shift left testing to security with ShiftLeft.io| Gary Gregory
Understand Java Generics' super and extends| Gary Gregory
You can load and unload a specific Log4j 2 configuration file for a given EJB. How? Use @PreDestroy and @PostConstruct. This gives you separately deployable EJBs with separate Log4j configurations. Ka-Pow! For example: Happy Coding, Gary Gregory| Gary Gregory
Here I am in one of my forked git repositories on GitHub. I have a patch to contribute, a bug to fix but I want to make sure that my local copy of the repository is not stale.| Gary Gregory
It turns out that FindBugs, the Java bug hunting tool used by legions of Java developers, after being proclaimed dead, has issued a Monty Python-like "I'm not dead yet" rejoinder on Hacker News. What is going on here?| Gary Gregory
Apache Log4j 2.7 is heading out to Maven Central. Here’s are the highlights of what’s new since 2.6.2. The RoutingAppender can be configured with scripts. A new Appender, the ScriptApp…| Gary Gregory
