{"tag":{"id":"56744722958ef13879b94fb7","name":"Security","logo":"https://res.cloudinary.com/hashnode/image/upload/v1472744837/bnzk4gvspiy66dsmw9ku.png","slug":"security","tagline":"All about security","__typename":"Tag"},"publication":{"__typename":"Publication","id":"6134923292d0321a99993d61","url":"https://talktotheduck.dev","canonicalURL":"https://talktotheduck.dev","urlPattern":"SIMPLE","title":"Talk to the Duck","displayTitle":"","hasBadges":true,"descriptionSEO":"Debugging secrets - learn how to dig deep into your apps. The hidden techniques, tricks and tools for debugging, APM and more. With a big focus on production tracing and developer oriented APM tools.","about":{"html":"

Developer Advocate at Lightrun. Co-Founder of Codename One. Java Rockstar, Speaker, Author, Blogger and open source hacker. \nIn this blog I cover debugging in-depth and production related issues

\n","__typename":"Content"},"features":{"newsletter":{"isEnabled":false,"__typename":"NewsletterFeature"},"viewCount":{"isEnabled":false,"__typename":"ViewCountFeature"},"readTime":{"isEnabled":true,"__typename":"ReadTimeFeature"},"audioBlog":{"isEnabled":true,"voiceType":"FEMALE","__typename":"AudioBlogFeature"},"textSelectionSharer":{"isEnabled":true,"__typename":"TextSelectionSharerFeature"},"customCSS":{"isEnabled":false,"published":null,"draft":null,"__typename":"CustomCSSFeature"},"__typename":"PublicationFeatures"},"ogMetaData":{"image":null,"__typename":"OpenGraphMetaData"},"author":{"__typename":"User","id":"6134920d92d0321a99993d4b","name":"Shai Almog","username":"talktotheduck","profilePicture":"https://cdn.hashnode.com/res/hashnode/image/upload/v1630835213904/Sf7WK8npC.jpeg"},"preferences":{"__typename":"Preferences","logo":"https://cdn.hashnode.com/res/hashnode/image/upload/v1633019091618/E-HXb_tJD.png","darkMode":{"__typename":"DarkModePreferences","logo":"https://cdn.hashnode.com/res/hashnode/image/upload/v1633019632263/qg0n6WiWz.png","enabled":null},"navbarItems":[{"__typename":"PublicationNavbarItem","id":"6361edb20c1fdc76f7c88e06","label":"New Blog","url":"https://debugagent.com","priority":100,"type":"link","series":null,"page":null},{"__typename":"PublicationNavbarItem","id":"646eed7fbcbd785438eccc83","label":"Learn Java","url":"https://talktotheduck.dev/learn-java","priority":98,"type":"page","series":null,"page":{"__typename":"StaticPage","id":"646eec845bd7d54f0c7ea866"}},{"__typename":"PublicationNavbarItem","id":"64a25ceeda8bacd49092f822","label":"Java 8 to 21 Book","url":"https://www.amazon.com/dp/B0C9WW8PFL/","priority":97,"type":"link","series":null,"page":null},{"__typename":"PublicationNavbarItem","id":"64a25cdada8bacd49092f80e","label":"Debugging Book","url":"https://talktotheduck.dev/debugging-book","priority":95,"type":"page","series":null,"page":{"__typename":"StaticPage","id":"646eeadc5bd7d54f0c7ea833"}},{"__typename":"PublicationNavbarItem","id":"646eeea4d4bc4054f3fca2dc","label":"Debugging Series","url":"https://debugagent.com/series/debugging-course","priority":85,"type":"link","series":null,"page":null},{"__typename":"PublicationNavbarItem","id":"646eed54bcbd785438eccc5a","label":"Mastodon","url":"https://mastodon.social/@debugagent","priority":78,"type":"link","series":null,"page":null},{"__typename":"PublicationNavbarItem","id":"646eed5bbcbd785438eccc63","label":"LinkedIn","url":"https://www.linkedin.com/in/shai-almog-81a42/","priority":77,"type":"link","series":null,"page":null},{"__typename":"PublicationNavbarItem","id":"646eed62bcbd785438eccc6c","label":"Medium","url":"https://medium.com/@Codename_One","priority":76,"type":"link","series":null,"page":null},{"__typename":"PublicationNavbarItem","id":"646eed68bcbd785438eccc73","label":"dev.to","url":"https://dev.to/codenameone/","priority":75,"type":"link","series":null,"page":null},{"__typename":"PublicationNavbarItem","id":"6361ed6205379376d22562e1","label":"Lightrun","url":"https://lightrun.com","priority":11,"type":"link","series":null,"page":null},{"__typename":"PublicationNavbarItem","id":"6361ed5b0c1fdc76f7c88de8","label":"Talks","url":"https://talktotheduck.dev/previous-talks","priority":10,"type":"link","series":null,"page":null}],"enabledPages":{"__typename":"PagesPreferences","badges":false,"newsletter":false,"members":true},"layout":"magazine","disableFooterBranding":false},"favicon":"https://cdn.hashnode.com/res/hashnode/image/upload/v1633019260559/odfkEL7cz.jpeg","headerColor":"","integrations":{"fbPixelID":"","fathomSiteID":"","fathomCustomDomainEnabled":null,"fathomCustomDomain":"","hotjarSiteID":"","matomoSiteID":null,"matomoURL":"","gaTrackingID":"UA-156681261-5","plausibleAnalyticsEnabled":false,"wmPaymentPointer":"","umamiWebsiteUUID":"56985cdc-152b-4a43-b661-c26d01a78666","__typename":"PublicationIntegrations"},"imprint":"

📖 Read my Book Practical Debugging at Scale

▶️ Learn Java, Debugging & DevOps with my Video Tutorials on YouTube

📝 Read my other Blog DebugAgent

\n","postsCount":53,"isTeam":true,"links":{"twitter":"https://twitter.com/debugagent","instagram":"","github":"https://github.com/shai-almog","website":"https://www.lightrun.com/","hashnode":"https://hashnode.com/@talktotheduck","youtube":"https://www.youtube.com/@debugagent","dailydev":"https://app.daily.dev/codenameone","linkedin":"https://www.linkedin.com/in/shai-almog-81a42/","mastodon":"https://mastodon.social/@debugagent","__typename":"PublicationLinks"},"domainInfo":{"__typename":"DomainInfo","hashnodeSubdomain":"talktotheduck","domain":{"__typename":"DomainStatus","host":"talktotheduck.dev","ready":true},"wwwPrefixedDomain":null},"redirectionRules":[{"source":"/logging","destination":"https://talktotheduck.dev/logging-best-practices-mdc-ingestion-and-scale","type":"TEMPORARY","__typename":"RedirectionRule"}],"sponsorship":{"content":null,"stripe":null,"__typename":"PublicationSponsorship"},"pro":null,"posts":{"edges":[{"node":{"id":"6245158b114d74ee1e632bb4","title":"Spring Remote Code Execution Vulnerability","slug":"spring-remote-code-execution-vulnerability","publishedAt":"2022-03-31T02:44:27.948Z","cuid":"cl1ee8jig018uaynv3ljq56ae","url":"https://talktotheduck.dev/spring-remote-code-execution-vulnerability","subtitle":"A new issue impacting Spring Core on Java 9 and newer could be the next Log4J. Here's what I know so far (mitigation and investigation).","brief":"I'd like to start by saying that I'm not a security expert. I also won't link to the exploit. This is a very fresh take on a new vulnerability but there's already confirmation from Sonatype. The current exploit seems to be limited to Spring on top of...","readTimeInMinutes":1,"views":1496,"author":{"id":"6134920d92d0321a99993d4b","username":"talktotheduck","name":"Shai Almog","profilePicture":"https://cdn.hashnode.com/res/hashnode/image/upload/v1630835213904/Sf7WK8npC.jpeg","followersCount":49,"__typename":"User"},"coverImage":{"url":"https://cdn.hashnode.com/res/hashnode/image/upload/v1648665990618/Nrk_ExmMK.jpg","isPortrait":false,"__typename":"PostCoverImage"},"__typename":"Post"},"cursor":"NjI0NTE1OGIxMTRkNzRlZTFlNjMyYmI0XzIwMjItMDMtMzFUMDI6NDQ6MjcuOTQ4Wg==","__typename":"PostEdge"},{"node":{"id":"62209f6af66a8f37e114f495","title":"Detecting, Investigating and Verifying Fixes for Security Incidents and Zero Day Issues Using Lightrun","slug":"detect-track-verify-security-issues-zero-days","publishedAt":"2022-03-03T10:58:50.079Z","cuid":"cl0avkgaj01agqmnvchl44vn2","url":"https://talktotheduck.dev/detect-track-verify-security-issues-zero-days","subtitle":"Cover major milestones in app security: finding the issue, evaluating a breach, proving it and validating the fix. Lightrun shines in this usage","brief":"Important: You can use Lightrun for free on your servers.\nI’m not a security expert. I’d like to think of myself as a security conscious developer, but this is a vast subject with depth and breadth. What I understand is Lightrun and Debugging. In tha...","readTimeInMinutes":7,"views":241,"author":{"id":"6134920d92d0321a99993d4b","username":"talktotheduck","name":"Shai Almog","profilePicture":"https://cdn.hashnode.com/res/hashnode/image/upload/v1630835213904/Sf7WK8npC.jpeg","followersCount":49,"__typename":"User"},"coverImage":{"url":"https://cdn.hashnode.com/res/hashnode/image/upload/v1646210381300/pNbWtoMCO.webp","isPortrait":false,"__typename":"PostCoverImage"},"__typename":"Post"},"cursor":"NjIyMDlmNmFmNjZhOGYzN2UxMTRmNDk1XzIwMjItMDMtMDNUMTA6NTg6NTAuMDc5Wg==","__typename":"PostEdge"},{"node":{"id":"616699b818374f2573277491","title":"PSA:The Risks of Remote JDWP Debugging","slug":"psa-the-risks-of-remote-jdwp-debugging","publishedAt":"2021-10-13T08:32:56.267Z","cuid":"ckup99pu2164sebs117aq8jqz","url":"https://talktotheduck.dev/psa-the-risks-of-remote-jdwp-debugging","subtitle":"It isn't so much a security risk as it is a wide open door with everything labeled for anyone to take freely and matches to burn it all down...","brief":"When I teach or lecture and mention security I always love the analogy of security as an Onion. This is a common cliché yet it’s still a powerful analogy for people who are new to the concepts. The equivalent analogy I would pick for remote debugging...","readTimeInMinutes":6,"views":1698,"author":{"id":"6134920d92d0321a99993d4b","username":"talktotheduck","name":"Shai Almog","profilePicture":"https://cdn.hashnode.com/res/hashnode/image/upload/v1630835213904/Sf7WK8npC.jpeg","followersCount":49,"__typename":"User"},"coverImage":{"url":"https://cdn.hashnode.com/res/hashnode/image/upload/v1634110841674/E9rdn-_HH.jpeg","isPortrait":false,"__typename":"PostCoverImage"},"__typename":"Post"},"cursor":"NjE2Njk5YjgxODM3NGYyNTczMjc3NDkxXzIwMjEtMTAtMTNUMDg6MzI6NTYuMjY3Wg==","__typename":"PostEdge"}],"pageInfo":{"endCursor":"NjE2Njk5YjgxODM3NGYyNTczMjc3NDkxXzIwMjEtMTAtMTNUMDg6MzI6NTYuMjY3Wg==","hasNextPage":false,"__typename":"PageInfo"},"__typename":"PublicationPostConnection"}}}