Zak calls out the cowards at Malk Organics LLC for not standing up to the dairy lobby… oh, and their new oat milk isn’t that good.
Zak describes the Log4Shell exploit and all of the innocuous decisions that lead up to its presence in a large amount of software written in Java.
Recorded on December 22, 2021
Log4Shell – Wikipedia
– 4K Yule Log – PBS on YouTube
– Log4J – Apache
– Logging and Monitoring – The New Stack
– JNDI – Wikipedia
– Java RMI
– Tomcat BeanFactory – Apache
– The Jira Issue
– Prepared statement – Wikipedia
– Dependabot – GitHub Blog
This episode’s PGP signature: (download link)