📑
Joe's Notes and Links
  • About this site
  • About me
    • Links
    • Awards & Certifications
      • Veeam
      • Kasten
      • AWS
      • Other
      • Planned Certifications
  • Backup Theory
    • Basics Articles
      • I - Why Snapshots Are Not Backups: Understanding the Crucial Differences
      • II - Why Replication is not Backup: Understanding the Differences
      • III - Backup Best Practices: Building a Robust Data Protection Solution
      • IV - Understanding Backup Strategies: Full, Incremental, and Differential Backups
      • V - Understanding RPO and RTO
      • VI - Versioning and Retention Policies: The Backbone of Data Protection Solutions
      • VII - Implementing Backup Scheduling for Optimal Data Protection
      • VIII - Data Classification: A Crucial Pillar in Effective Backup and Recovery Strategies
      • IX - Extending Backup Measurements - Understanding RTO and RTA
    • Terminology
  • Backup Products
    • Veeam
      • Veeam Legends VBR Pocketbook V1
      • PostgreSQL
      • Powershell Scripting (Veeam specific)
        • How to automate Veeam Backup and Replication Global Exclusion Lists
        • Get Result of Backups for one VM for a Year
        • Multitag Jobs
      • Backup & Replication
        • Error "Failed to upgrade host components. Error: 'Minimum supported OS version for Veeam VSS..."
        • [Changed in V11] - Handling of exported and orphaned backups
        • [New in V12] - 2FA Login is not available with expired license
        • Quick Backup of a VM associated to multiple Backup jobs
        • Backup of Windows 10 PC with server managed agent
        • VBR Console – users and roles and job notifications
      • Agents
        • USB Disk as Veeam Repository in a private Environment
      • Veeam and Tape
        • Veeam and Tape I - Moving a tape library with data from one VBR server to another
        • Veeam and Tape II - Moving a tape library with data from one VBR server to another
        • Veeam and Tape III - Restore of Backup Job Files from Tape which were backed up with a File-to-Tape
        • Veeam and Tape IV - Cataloging a tape with a huge number of files
        • Veeam and Tape V - Usage of a S3 compatible Object Storage Gateway
      • Plugins for Enterprise Applications
        • Plugin for Oracle RMAN
          • Veeam RMAN Plugin – Update of Backup Meta Data
          • Veeam RMAN Plugin - ORA-01012 Error
          • Parameter "set-force-delete"
          • Parameter "logsDir"
      • Certification & Accreditation
        • Veeam Certified Architect (VMCA) 2022 - course and exam experience
        • New VMSP and VMTSP 2023 Accreditations available in ProPartner Portal
      • Service Provider Console
        • Deactivate Admins Group
      • Links
      • Miscellaneous
    • Spectrum Protect
      • Links
      • Backup/Archive Client
        • log4j Vulnerability - BA Client Fix and Workaround
  • Storage
    • Storage
      • Links
      • Brocade
        • Useful FOS Commands
  • Virtualization
    • VMware
      • Links
      • PowerCLI
        • How to install VMware PowerCLI offline
        • Prepare the connection to the vCenter
  • Automation and Scripting
    • Powershell scripting
      • Word-wrap PowerShell commands
      • Get Information about Networking
      • Check signature of a DLL
      • Query all VMs with mounted ISO files
      • Dismount all mounted ISO files on a cluster
      • List all Networks of all VMs on a Cluster
      • List all networks on all reachable cluster
  • OS
    • Windows
      • NTP
      • How to install VMware PowerCLI offline
      • Configure MTU Size
    • Linux
      • Routen setzen
  • Cloud
    • AWS
      • Links
  • Databases
    • Links
  • Tools
    • useful Tools and Websites
  • Community
    • Other great blogs/communities
Powered by GitBook
On this page
  • Workaround
  • Fix
  1. Backup Products
  2. Spectrum Protect
  3. Backup/Archive Client

log4j Vulnerability - BA Client Fix and Workaround

PreviousBackup/Archive ClientNextStorage

Last updated 3 years ago

The BA Client Webclient component is affected by the log4j issue.

Workaround

To deactivate the webclient function do the following:

Linux/UNIX:

  • change in dsm.sys the line "managedservices webclient schedule" to "managedservices schedule"

  • restart the dsmcad deamon

Windows:

  • stop the webclient service with "net stop 'TSM Client Remote Agent'" or select "stop" in services.msc for this service.

  • configure this service with start type "manual" to prevent automatic start after reboot.

Fix

IBM fixed the log4j vulnerability in Spectrum Protect BA Client on December 17th and published versions 8.1.13.1 and 7.1.8.13

Info about fixes:

Download:

https://www.ibm.com/support/pages/node/589103
https://www.ibm.com/support/pages/ibm-spectrum-protect-downloads-latest-fix-packs-and-interim-fixes
http://ftp.software.ibm.com/storage/tivoli-storage-management/patches/