From 60073f735c6a245370c5231818565b6a59b28a1e Mon Sep 17 00:00:00 2001
From: Guillaume Lours <guillaume.lours@docker.com>
Date: Sun, 12 Dec 2021 00:10:18 +0100
Subject: [PATCH] mitigate Log4J v2 CVE-2021-44228 by using
 LOG4J_FORMAT_MSG_NO_LOOKUPS env variable (#193)

Signed-off-by: Guillaume Lours <guillaume.lours@docker.com>
---
 elasticsearch-logstash-kibana/docker-compose.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/elasticsearch-logstash-kibana/docker-compose.yml b/elasticsearch-logstash-kibana/docker-compose.yml
index 46e6e0b..7fbf0a6 100644
--- a/elasticsearch-logstash-kibana/docker-compose.yml
+++ b/elasticsearch-logstash-kibana/docker-compose.yml
@@ -5,6 +5,7 @@ services:
     environment:
       discovery.type: single-node
       ES_JAVA_OPTS: "-Xms512m -Xmx512m"
+      LOG4J_FORMAT_MSG_NO_LOOKUPS: true
     ports:
       - "9200:9200"
       - "9300:9300"
@@ -21,6 +22,7 @@ services:
     environment:
       discovery.seed_hosts: logstash
       LS_JAVA_OPTS: "-Xms512m -Xmx512m"
+      LOG4J_FORMAT_MSG_NO_LOOKUPS: true
     volumes:
       - ./logstash/pipeline/logstash-nginx.config:/usr/share/logstash/pipeline/logstash-nginx.config
       - ./logstash/nginx.log:/home/nginx.log