I would like to ask if it is possible to replace the sfs2x logger (slf4j + log4j), which writes to SFSX2/log/..
The current version of log4j has been blacklisted by our IT team due to vulnerability.
What I have tried
Replaced slf4j with latest stable 1.7.36
Replaced log4j with log4j2 2.17.2
- - log4j-1.2.15.jar
- slf4j-api-1.7.5.jar
+ log4j-1.2-api-2.17.2.jar
+ log4j-api-2.17.2.jar
+ log4j-core-2.17.2.jar
+ log4j-slf4j-impl-2.17.2.jar (slf4j to log4j2 binding)
Changing it to new appenders.RollingFIleAppender from log4j2 causes a Instantiate exception
Changing properties to log4j2 style cause no more logs to be shown in console or written to file
Properties rollingFileAppender looks like this
log4j.appender.fileAppender=org.apache.logging.log4j.core.appender.RollingFileAppender
log4j.appender.fileAppender.name=fileAppender
log4j.appender.fileAppender.fileName=logs/smartfox.log
log4j.appender.fileAppender.filePattern =logs/smartfox.log'.'yyyy-MM-dd-mm
log4j.appender.fileAppender.layout=org.apache.log4j.PatternLayout
log4j.appender.fileAppender.layout.pattern=%d{yyyy-MM-dd HH:mm:ss.SSS} %level [%t] [%c] [%M] [%l] - %msg%n
log4j.appender.fileAppender.policies.type = Policies
log4j.appender.fileAppender.policies.time.type = TimeBasedTriggeringPolicy
log4j.appender.fileAppender.policies.time.interval = 1
log4j.appender.fileAppender.policies.time.modulate = true
It would be great if we could swap it with some other logger, or disable the current one completely so that it does not have any dependencies to log4j. Please let me know if this could be fixed or if there are some other alternatives.
Thanks