(Resending to the list. Sorry, Rick.)
FYI, my client was using 8.3.1, which should have mitigated the attack.
But the server was suffering a sudden death of the Solr process, and the log
showed it was being attacked using CVE-2019-17558.
We blocked the external access of Solr API. Then this su
By tracing the output in the log files we see the following sequence.
Overseer role list has POD-1, POD-2, POD-3 in that order
POD-3 has 2 shard leaders.
POD-3 restarts.
A) Logs for the shard whose leader moves successfully from POD-3 to POD-1
On POD-1: o.a.s.c.ShardLeaderElectionContext Replay
Thanks Shawn.
On Fri, Feb 12, 2021 at 7:43 PM Shawn Heisey wrote:
> On 2/12/2021 11:17 AM, Rick Tham wrote:
> > I am trying to figure out if the following is an additioanal valid
> > mitigation step for CVE-2019-17558 on SOLR 6.1. None of our
> solrconfig.xml
> > contains the lib references to t
