IMPORTANT MESSAGE: SECURITY VULNERABILITY IN JAVA EDITION

The Aternos forums are now deprecated

Learn more about this change here.

For help regarding Aternos, we recommend you to visit our support center.

    Hello, Yesterday Mojang published a message saying that they identified a vulnerability in the form of an exploit within Log4j.


    :aternos: How I can protect my server? :aternos:

    I can't upload any file in the server to the working directory :(

    This is the web page:

    https://t.co/Q6k07gQXV2


    If you can do it please tell me.



    -------------

    Ángel :saint:

    Thread
    How to add JVM Arguments to My server on aternos?
    How to add JVM Arguments to My server on aternos?
    I found out about the rce Expolit in minecraft yesterday and i saw ppl saying to add this jvm argument(Dlog4j2.formatMsgNoLookups=true)to your mc servers and clients i added it to my client but can i add it on to my server?
    How to add this jvm arg ?
    I want to add it to a paper 1.17.1 server
    Pls help me
    KurianM

    All Aternos servers are automatically protected.

    Quote from Matthias

    There is a serious exploit in several Java based server softwares. We've added a command line parameter to all Java servers that prevents your server from being exploited and we are also (as always) updating every server software automatically which already includes permanent fixes.

    In addition to the previous fixes, we have now added log4j configuration files to all server softwares according to Mojang's recommendation. This completely disables the problematic feature in all versions. The exploit only works to its full extent in older Java versions and we only use newer updated Java versions. There was never a high risk for your server and we have taken every possible step to ensure your security.


    Read this for more information: https://www.minecraft.net/en-u…ulnerability-java-edition

    Matthias - team member and owner of Aternos.