This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Discover Open Source & Log4j

Jump to solution
Jayshreepatel
By
Level 3

Does  Flexera have a paper on the  discovery of Open Source Software & in particular for Log4J

‎Jan 26, 2022 04:59 AM

0 Kudos
(2) Solutions

Jump to solution
mfranz
By Level 17 Champion
Level 17 Champion

There is a great article on how to use the FNMS agent file scan to identify problematic log4j files: https://community.flexera.com/t5/FlexNet-Manager-Blog/Finding-installations-of-Apache-Log4j-or-other-files-on/ba-p/217513

This might have limits if OSS is highly integrated, like code-wise.

View solution in original post

‎Jan 26, 2022 11:38 AM

Jump to solution
ChrisG
By Community Manager Community Manager
Community Manager

Here are some other resources related to Log4j that you may find interesting reading:

In terms of discovery of open source software components that are included in other software, the following info may be helpful: What is Software Composition Analysis?

 

(Did my reply solve the question? Click "ACCEPT AS SOLUTION" to help others find answers faster. Liked something? Click "KUDO". Anything expressed here is my own view and not necessarily that of my employer, Flexera.)

View solution in original post

‎Feb 01, 2022 05:02 PM

(3) Replies

Jump to solution
mfranz
By Level 17 Champion
Level 17 Champion

There is a great article on how to use the FNMS agent file scan to identify problematic log4j files: https://community.flexera.com/t5/FlexNet-Manager-Blog/Finding-installations-of-Apache-Log4j-or-other-files-on/ba-p/217513

This might have limits if OSS is highly integrated, like code-wise.

‎Jan 26, 2022 11:38 AM

Jump to solution
Jayshreepatel
By
Level 3

Thank you 

 

‎Jan 26, 2022 11:47 AM

0 Kudos

Jump to solution
ChrisG
By Community Manager Community Manager
Community Manager

Here are some other resources related to Log4j that you may find interesting reading:

In terms of discovery of open source software components that are included in other software, the following info may be helpful: What is Software Composition Analysis?

 

(Did my reply solve the question? Click "ACCEPT AS SOLUTION" to help others find answers faster. Liked something? Click "KUDO". Anything expressed here is my own view and not necessarily that of my employer, Flexera.)

‎Feb 01, 2022 05:02 PM

Top Kudoed Authors
View all