I’ve had this idea for many years now, and as we get closer to 3.0, it seems like it’s time to consider the details. We can change the default configuration in 3.0 without being as surprising as any other version. I think we could use this as an opportunity to demonstrate some best practices and recommendations. For example, we could switch from PatternLayout to JsonTemplateLayout by default to help prevent common vulnerabilities related to log message forging (like putting a newline or similar and faking the log output in the following line). Then there’s an option related to direct console writing that we have disabled by default despite being benign. There are probably other settings I haven’t considered at the moment.
So what do you think? Any suggestions for the default configuration?
