Details
-
Bug
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
1.2
-
None
Description
The Lumberjack and Log4j 1.x logging backends have reach end-of-life in 2002 and 2015 respectively.
To provide a "secure by default" configuration the Jdk13LumberjackLogger and Log4JLogger should be:
- deprecated for removal in 2.x,
- disabled by default.
Users would need to enable these backends explicitly by setting the value of the property 'org.apache.commons.logging.Log' to the fully qualified name of the logger ('org.apache.commons.logging.impl.Jdk13LumberjackLogger' or 'org.apache.commons.logging.impl.Log4JLogger') in either Java's system properties or a commons-logging.properties file on the classpath.
Attachments
Issue Links
- blocks
-
LOGGING-187 release current state of master as 1.3
- Closed
- links to