Home » Archives for Alexius Diakogiannis

Author Archives: Alexius Diakogiannis

Author of JEE.gr, JEE Architect, Scrum Master, Enthusiastic Entrepreneur, Passionate Archer, Linux Lover and JAVA Geek!

Logging Failed and Successful Authentication Attempts with SpringBoot

Introduction In the latest OWASP top 10 (OWASP Top 10:2021) list with, the well known standard awareness document for developers and web application security that represents a broad consensus about the most critical security risks to web applications, a mentioned is made regarding identification and authentication failures (A07:2021 – Identification and Authentication Failures). Previously known as “Broken authentication” it refers ...

Read More »

Log4j RCE 0-day vulnerability (CVE-2021-44228) mitigation actions

I had an update from my very good friend and excellent consultant Stella Varvarigou in which she explained me that setting com.sun.jndi.rmi.object.trustURLCodebase and com.sun.jndi.cosnaming.object.trustURLCodebase to false does not fully mitigate the threat as it is possible to send the exploit code with the request.[2] Introduction Apache Log4j, the most popular logging system, has announced a zero-day exploit CVE-2021-44228 on December 9, 2021 that results ...

Read More »

Java 17 the new LTS version is finally here!

Java 17, the new long-term support aka LTS is now available for use and support for many years to come. Let’s remind here that  Non-LTS releases get six months of support from Oracle. You can download it here JDK 17 GA Release (java.net) New Capabilities JDK 17 features everything that has been added since the last LTS release that was ...

Read More »

Git Essentials Crash Course

Introduction This is not Java but several newbie developers ask the same question, how to use GIT and how does GIT works so here it goes… Have you ever work in SVN? Well forget everything you know and lets start over What is a GIT repo? In general there are two mirror repos. Your local repo and the remote repo. ...

Read More »

Can/Should I use parallel streams in a transaction context?

Introduction To make a long story short, you should not use transactions within a parallel stream. This is because each thread in the parallel stream has its own name thus it does participate in the transaction. The Streams API is designed to work correctly under certain guidelines. In practice, to benefit from parallelism, each operation is not allowed to change ...

Read More »

Apache NetBeans 11.1 Just released!

The Apache NetBeans proudly announced the long expected release of Apache NetBeans 11.1 that has a plethora of exciting new features including Payara integration out of the box for the first time, with thanks to the Payara team! You can download it here https://netbeans.apache.org/download/nb111/nb111.html Bellow are all the new exciting features this version has to offer! Java EE The highlights ...

Read More »

The Transient Keyword in Java and Its Use

I recently came a cross in a study project of one of my friends that are studding the basics of programming in Java some forgotten sensitive information printed in text files and remembered the transient keyword in Java. The transient keyword in Java plays an important role in terms of security and can be very useful in “accidents” like the ...

Read More »

Apache NetBeans (incubating) 10.0 Released

The Apache NetBeans proudly announced the release of Apache NetBeans (incubating) 10.0. Finally the first Apache NetBeans incubating release with full support for Java SE, PHP and JavaScript development You can download it here: https://netbeans.apache.org/download/nb100/nb100.html Apache NetBeans (incubating) 10.0 constitutes all but the enterprise cluster in the Apache NetBeans Git repo, which together provide the NetBeans Platform (i.e., the underlying application framework), ...

Read More »