Log4j RELP Plugin

Creates Log4j appender that uses RELP to ensure no events are lost.

Please note

Please note that regarding log4j version 1.2.17 following vulnerabilities exist and we recommend not to use these features:

[CVE-2020-9488] Improper validation of certificate with host mismatch in Apache Log4j SMTP appender.

[CVE-2019-17571] Included in Log4j 1.2 is a SocketServer class that is vulnerable to deserialization of untrusted data which can be exploited to remotely execute arbitrary code when combined with a deserialization gadget when listening to untrusted network traffic for log data.

Example log4j.properties

log4j.rootLogger=DEBUG, CONSOLE, RELPAPPENDER
log4j.appender.CONSOLE=org.apache.log4j.ConsoleAppender
log4j.appender.CONSOLE.Threshold=INFO
log4j.appender.CONSOLE.layout=org.apache.log4j.PatternLayout
log4j.appender.CONSOLE.layout.ConversionPattern=[%p] [%F#%L] [%C] %m%n
log4j.appender.RELPAPPENDER=com.teragrep.jla_05.RelpAppender
log4j.appender.RELPAPPENDER.Threshold=INFO
log4j.appender.RELPAPPENDER.layout=org.apache.log4j.PatternLayout
log4j.appender.RELPAPPENDER.layout.ConversionPattern=[%p] [%F#%L] [%C] %m%n
log4j.appender.RELPAPPENDER.relpAddress=localhost
log4j.appender.RELPAPPENDER.relpPort=1666
log4j.appender.RELPAPPENDER.appName=jla_05
log4j.appender.RELPAPPENDER.hostname=localhost
log4j.appender.RELPAPPENDER.connectionTimeout=5000
log4j.appender.RELPAPPENDER.writeTimeout=2000
log4j.appender.RELPAPPENDER.readTimeout=15000
log4j.appender.RELPAPPENDER.reconnectInterval=3000
log4j.appender.RELPAPPENDER.useSD=true

Property explanations

log4j.appender.RELPAPPENDER.relpAddress
- Connection destination address
log4j.appender.RELPAPPENDER.relpPort
- Connection destination port
log4j.appender.RELPAPPENDER.appName
- Stream application identifier. Maximum length of 48 characters, limited by RFC5424
log4j.appender.RELPAPPENDER.hostname
- Stream host identifier. Maximum length of 255 characters, limited by RFC5424
log4j.appender.RELPAPPENDER.connectionTimeout
- Time to wait before timing out connection
log4j.appender.RELPAPPENDER.writeTimeout
- Time to wait for destination to accept data
log4j.appender.RELPAPPENDER.readTimeout
- Time to wait for destination to acknowledge sent data (low values cause duplicates)
log4j.appender.RELPAPPENDER.reconnectInterval
- Time to wait between re-connection attempts
log4j.appender.RELPAPPENDER.useSD
- Enables structured data containing uuid and source information

Usage

Pass log4j.properties file as property

-Dlog4j.configuration=file:/path/to/log4j.properties

Using the logger

static Logger logger = Logger.getLogger(MyClass.class.getName());
logger.info("Info Message");
logger.warn("Warning message");
logger.trace("Trace message");
// Finally shutdown so RELP can disconnect gracefully
LogManager.shutdown();

Maven dependency definition

<dependency>
    <groupId>com.teragrep</groupId>
    <artifactId>jla_05</artifactId>
    <version>%VERSION%</version>
</dependency>

Name		Name	Last commit message	Last commit date
Latest commit History 7 Commits
.github/workflows		.github/workflows
src		src
LICENSE		LICENSE
README.adoc		README.adoc
pom.xml		pom.xml

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Log4j RELP Plugin

Please note

Example log4j.properties

Property explanations

Usage

Maven dependency definition

About

Releases

Packages

Languages

License

spidermanja/jla_05

Folders and files

Latest commit

History

Repository files navigation

Log4j RELP Plugin

Please note

Example log4j.properties

Property explanations

Usage

Maven dependency definition

About

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages