Some say that Log4J is the gift that keeps on giving, much like the Jelly of the Month Club. After the initial surge of discussion a couple weeks ago there were mitigations, a vaccine and multiple iterations of official patches to keep the issue at bay and the new ones that cropped up afterwards. Brian, Dan and Erik discuss the log4j vulnerability as it relates to enterprise systems, supportability, balancing the risk of patching and the ways that open-source software are used within the enterprise.

Join us this week as we cover:

We also have a video channel on YouTube that airs the “with pictures” edition of the podcast. Please head over to and watch, subscribe and “like” the episodes.

Support The Great Security Debate