Thank you.
On Thu, Jan 23, 2014 at 1:24 AM, Benedikt Ritter <brit...@apache.org> wrote: > You can use themail archives: > http://mail-archives.apache.org/mod_mbox/logging-log4j-user/ > > > 2014/1/22 Saibabu Vallurupalli <saibabu.vallurupa...@gmail.com> > >> Hi Team, >> >> I need to attach this conversation to my JIRA ticket and I am using my >> GMail here. Is there any URL I can generate out of this discussion to reuse >> or refer to. Sorry, This is a forum administration question :-( >> >> Thank you, >> Sai >> >> >> On Wed, Jan 22, 2014 at 5:43 AM, Saibabu Vallurupalli < >> saibabu.vallurupa...@gmail.com> wrote: >> >>> Ralph, >>> Good morning. >>> >>> This is really helpful. >>> >>> Thanks so much. >>> >>> Regards, >>> Sai >>> >>> >>> On Wed, Jan 22, 2014 at 12:41 AM, Ralph Goers < >>> ralph.go...@dslextreme.com> wrote: >>> >>>> Yes. >>>> https://svn.apache.org/repos/asf/logging/log4j/log4j2/trunk/log4j-core/src/test/java/org/apache/logging/log4j/core/appender/rewrite/RewriteAppenderTest.java >>>> uses >>>> https://svn.apache.org/repos/asf/logging/log4j/log4j2/trunk/log4j-core/src/test/resources/log4j-rewrite.xml >>>> which >>>> uses a MapRewritePolicy. You would replace that with your own >>>> RewritePolicy. >>>> https://svn.apache.org/repos/asf/logging/log4j/log4j2/trunk/log4j-core/src/test/java/org/apache/logging/log4j/core/appender/rewrite/TestRewritePolicy.java >>>> shows >>>> a sample RewritePolicy. Basically you just create a new LogEvent copying >>>> data from the input LogEvent modifying that data as needed. >>>> >>>> Ralph >>>> >>>> On Jan 21, 2014, at 3:38 PM, Saibabu Vallurupalli < >>>> saibabu.vallurupa...@gmail.com> wrote: >>>> >>>> Hi Scott and Team: >>>> >>>> I tried to research on the internet on how to use this functionality >>>> but very limited information. Do we have a Unit test case showing this >>>> scenario in the source code? Or any reference implementation will be really >>>> helpful to refer and try in my Application. >>>> >>>> Please advise. >>>> >>>> Thank you, >>>> Sai >>>> >>>> >>>> On Tue, Jan 21, 2014 at 5:57 PM, Scott Deboy <scott.de...@gmail.com>wrote: >>>> >>>>> This mechanism is also available in log4j 1.2: >>>>> >>>>> >>>>> https://logging.apache.org/log4j/1.2/apidocs/org/apache/log4j/rewrite/RewriteAppender.html >>>>> >>>>> >>>>> On 1/21/14, Scott Deboy <scott.de...@gmail.com> wrote: >>>>> > See >>>>> > >>>>> http://logging.apache.org/log4j/2.x/manual/appenders.html#RewriteAppender >>>>> > >>>>> > On 1/21/14, Saibabu Vallurupalli <saibabu.vallurupa...@gmail.com> >>>>> wrote: >>>>> >> First of all Thanks so much for you all for the quickest response >>>>> for >>>>> >> this >>>>> >> posting. I am thinking of writing a wrapper class and update the >>>>> source, >>>>> >> but we have about 2400 Java classes in the application which needs >>>>> to be >>>>> >> updated and are using log4j logger. I am trying to explore the >>>>> option to >>>>> >> avoid modifying all these classes with some kind of ingestion. Any >>>>> >> suggestions around will be greatly appreciated. >>>>> >> >>>>> >> Thank you, >>>>> >> Sai >>>>> >> >>>>> >> >>>>> >> >>>>> >> On Tue, Jan 21, 2014 at 5:20 PM, Paul Benedict < >>>>> pbened...@apache.org> >>>>> >> wrote: >>>>> >> >>>>> >>> This is not an unusual requirement. I've been at a company that >>>>> tries to >>>>> >>> scrub log files from certain patterns (like SSN #s). Can that be >>>>> done in >>>>> >>> log4j? I don't know. It would be interesting to know if 2.0 had >>>>> some >>>>> >>> sort >>>>> >>> of filtering capability. Remko? Gary? Ralph? >>>>> >>> >>>>> >>> >>>>> >>> On Tue, Jan 21, 2014 at 4:16 PM, Saibabu Vallurupalli < >>>>> >>> saibabu.vallurupa...@gmail.com> wrote: >>>>> >>> >>>>> >>>> So, we wanted to inspect the message which is getting logged out >>>>> to >>>>> >>>> avoid >>>>> >>>> possible security issues. So, what exactly I am looking is If I >>>>> wanted >>>>> >>>> to >>>>> >>>> add a restriction on whats been logged. How can I achieve this? >>>>> >>>> >>>>> >>>> For example: log.info("user name"+username+"Password"+password); >>>>> // >>>>> >>>> This >>>>> >>>> is just an example if I see a message having password do not log >>>>> it or >>>>> >>>> take >>>>> >>>> some action. >>>>> >>>> >>>>> >>>> Please advise. >>>>> >>>> >>>>> >>>> Thank you, >>>>> >>>> Sai >>>>> >>>> >>>>> >>>> >>>>> >>>> On Tue, Jan 21, 2014 at 5:12 PM, Remko Popma >>>>> >>>> <remko.po...@gmail.com>wrote: >>>>> >>>> >>>>> >>>>> Sorry, but I have no idea what you mean by "neutralize out". >>>>> >>>>> What is currently happening and what would you like to happen >>>>> instead? >>>>> >>>>> >>>>> >>>>> Sent from my iPhone >>>>> >>>>> >>>>> >>>>> > On 2014/01/22, at 6:29, Saibabu Vallurupalli < >>>>> >>>>> saibabu.vallurupa...@gmail.com> wrote: >>>>> >>>>> > >>>>> >>>>> > Hi, >>>>> >>>>> > >>>>> >>>>> > I am working on an issue related to logging. I our application >>>>> we >>>>> >>>>> > are >>>>> >>>>> using log4j for logging and we detected our software doesn't >>>>> >>>>> neutralize >>>>> >>>>> out >>>>> >>>>> properly. Now, Is there any way without modifying the entire >>>>> source by >>>>> >>>>> going through each and every class we can achieve this >>>>> functionality >>>>> >>>>> of >>>>> >>>>> inspecting the message getting logged and take appropriate >>>>> action. >>>>> >>>>> > >>>>> >>>>> > We appreciate your support. >>>>> >>>>> > >>>>> >>>>> > Thank you, >>>>> >>>>> > Sai >>>>> >>>>> > >>>>> >>>>> >>>>> >>>>> >>>>> --------------------------------------------------------------------- >>>>> >>>>> To unsubscribe, e-mail: log4j-dev-unsubscr...@logging.apache.org >>>>> >>>>> For additional commands, e-mail: >>>>> log4j-dev-h...@logging.apache.org >>>>> >>>>> >>>>> >>>>> >>>>> >>>> >>>>> >>> >>>>> >>> >>>>> >>> -- >>>>> >>> Cheers, >>>>> >>> Paul >>>>> >>> >>>>> >> >>>>> > >>>>> >>>>> --------------------------------------------------------------------- >>>>> To unsubscribe, e-mail: log4j-dev-unsubscr...@logging.apache.org >>>>> For additional commands, e-mail: log4j-dev-h...@logging.apache.org >>>>> >>>>> >>>> >>>> >>> >> > > > -- > http://people.apache.org/~britter/ > http://www.systemoutprintln.de/ > http://twitter.com/BenediktRitter > http://github.com/britter >
