The Backend Engineering Show with Hussein Nasser artwork

The Log4j vulnerability | The Backend Engineering Show

The Backend Engineering Show with Hussein Nasser

English - December 15, 2021 02:12 - 35 minutes - 33 MB - ★★★★★ - 5 ratings
Technology Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
Previous Episode: Postgres HOT Optimization | Backend Engineering Show
Next Episode: Detailed analysis on the Amazon US-EAST-1 Outage | The Backend Engineering Show

In this episode of the backend engineering show, I discuss the log4j vulnerability (CVE-2021-44228 also known as log4shell) that took the Internet by storm.


0:00 Intro


1:00 log4j


5:30 How the attack started


11:00 Attack with DNS


17:00 Remote Code Execution


23:00 Remedy


31:00 Scanning


References


https://nvd.nist.gov/vuln/detail/CVE-2021-44228


https://youtu.be/oC2PZB5D3Ys


🧑‍🏫 Courses I Teach


https://husseinnasser.com/courses


Become a Member on YouTube


https://www.youtube.com/channel/UC_ML5xP23TOWKUcc-oAE_Eg/join


🔥 Members Only Content


https://www.youtube.com/playlist?list=UUMO_ML5xP23TOWKUcc-oAE_Eg