# log4j Vulnerability - BA Client Fix and Workaround

The BA Client Webclient component is affected by the log4j issue.

### Workaround

To deactivate the webclient function do the following: 

**Linux/UNIX:**

* change in dsm.sys the line \
  "`managedservices webclient schedule`" \
  to \
  "`managedservices schedule`"
* restart the dsmcad deamon

**Windows:**

* stop the webclient service with "`net stop 'TSM Client Remote Agent`'" or select "stop" in services.msc for this service.
* configure this service with start type "manual" to prevent automatic start after reboot.

### Fix

IBM fixed the log4j vulnerability in Spectrum Protect BA Client on December 17th and published versions **8.1.13.1** and **7.1.8.13**

Info about fixes:

<https://www.ibm.com/support/pages/node/589103>

<https://www.ibm.com/support/pages/ibm-spectrum-protect-downloads-latest-fix-packs-and-interim-fixes>

Download:&#x20;

<http://ftp.software.ibm.com/storage/tivoli-storage-management/patches/>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://jochen-meixner.gitbook.io/notes/backup-products/spectrum-protect/backup-archive-client/log4j-vulnerability-ba-client-fix-and-workaround.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.