search

traefik / plugin-log4shell

Log4Shell is a middleware plugin for Traefik which blocks JNDI attacks based on HTTP header values
https://plugins.traefik.io/plugins/628c9ec2ffc0cd18356a97a2/log4-shell
Apache License 2.0
38 stars 3 forks source link

Question about plugin #6

Open mushuthecat opened 2 years ago

mushuthecat commented 2 years ago

Hi,

Thanks for you job.

I have one question, i have setup your plugin using traefik.yml:

log4shell:
          modulename: github.com/traefik/plugin-log4shell
          version: v0.1.2

And dynamic.yml :

log4shell-foo:
            plugin:
                log4shell:
                    errorCode: 200

My Traefik dashbord seems to be ok 👍

image

It works perfectly, but how does it work ? can i see some logs about the "scan" ? Do i have to download some file into my traefik folder to make it works ? can you give me more detail to be sure that im realy using your plugin ?

Regards

johnynfulleffect commented 2 years ago

I am totally in the same situation. I "think" i have it setup correctly. Now, how to verify and test? Are there logs somewhere?

Thanks @mushuthecat for the post, was coming here to post the same

codingbaobao commented 2 years ago

I think there's no way to see the log since there's no any log inside. A compromise solution is fork the project and bury some log.