|
|
|
|
|
|
by michaelbuckbee
1649 days ago
|
|
|
For Heroku - Expedited WAF does filter (inbound) for log4j - but I'm not sure there's a good way to outbound, even with Private Spaces. You can start a dyno that only has access to the other apps in the space, but if log4j was on one of the connected web app servers you'd still be in trouble. https://expeditedsecurity.com/heroku/how-to-block-log4j-vuln... |
|
|