Discover Refinitiv
MyRefinitiv Refinitiv Perspectives Careers
Created with Sketch.
All APIs Questions & Answers  Register |  Login
Ask a question
  • Questions
  • Tags
  • Badges
  • Unanswered
Search:
  • Home /
  • TREP Infrastructure /
avatar image
Question by Henri.GARDON · Jan 04 at 03:44 PM · trepjavaATS

LOG4J security issue for ATS like service

Hello

We received the attached notice from Refinitiv : Log4j Vulnerability Update as of 15_30 GMT on 30th December 2021.pdf , and we would like to get some lights about the point related to Refinitiv Real-Time Advanced Transformation Server (ATS).

Basically, we had installed an ATS like service on our TREP infra (Real-Time Distribution System) and, from what I understood when we configured it with one of your collegue, it is not a real Advanced Transformation Server.
So my question is : is our current config impacted by the Log4j vulnerability ? If yes : how to fix it ?

Thanks,
Henri

log4j-vulnerability-update-as-of-15-30-gmt-on-30th.pdf (114.7 KiB)

People who like this

0 Show 0
Comment
10 |1500 characters needed characters left characters exceeded
▼
  • Viewable by all users
  • Viewable by moderators
  • Viewable by moderators and the original poster
  • Advanced visibility
Viewable by all users

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

8 Replies

  • Sort: 
avatar image
REFINITIV
Best Answer
Answer by Jirapongse · Jan 06 at 05:13 AM

@Henri.GARDON

The PUB service doesn't have the Vendor element entry so it is possible that it is not a service from ATS.

However, to confirm it, you need to contact your market data team to verify the source of this service.


Comment

People who like this

0 Show 0 · Share
10 |1500 characters needed characters left characters exceeded
▼
  • Viewable by all users
  • Viewable by moderators
  • Viewable by moderators and the original poster
  • Advanced visibility
Viewable by all users

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

avatar image
REFINITIV
Answer by Gurpreet · Jan 04 at 03:58 PM

Hi @Henri.GARDON,

Can you please elaborate what you mean by "ATS like service". Log4J is a product specifically used in the ATS. If your RTDS service was configured using ADS etc, and not ATS specifically, then your infrastructure is not impacted by this vulnerability.

Comment

People who like this

0 Show 0 · Share
10 |1500 characters needed characters left characters exceeded
▼
  • Viewable by all users
  • Viewable by moderators
  • Viewable by moderators and the original poster
  • Advanced visibility
Viewable by all users

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

avatar image
Answer by Henri.GARDON · Jan 04 at 04:07 PM

Basically, when we connect to our TREP infra, we have two services (via adhmon/adsmon):

1641312319279.png

IDN_RDF to retrieve real market data.
PUB : ATS like service where we can publish our our data in some way with a command line like : ./rmdstestclient -S PUB -f post.txt -ir 1 -I 1 with post.txt containing RICs.

I guess that we are not impacted, right ?


1641312319279.png (11.3 KiB)
Comment

People who like this

0 Show 0 · Share
10 |1500 characters needed characters left characters exceeded
▼
  • Viewable by all users
  • Viewable by moderators
  • Viewable by moderators and the original poster
  • Advanced visibility
Viewable by all users

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

avatar image
REFINITIV
Answer by Gurpreet · Jan 04 at 04:38 PM

There can be a number of ways in which a publishing service can be setup in infrastructure. To be completely sure, please talk to your market data administrator and verify that you don't have ATS setup - to be sure.

Comment

People who like this

0 Show 0 · Share
10 |1500 characters needed characters left characters exceeded
▼
  • Viewable by all users
  • Viewable by moderators
  • Viewable by moderators and the original poster
  • Advanced visibility
Viewable by all users

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

avatar image
REFINITIV
Answer by wasin.w · Jan 05 at 04:38 AM

Hello @Henri.GARDON

According to the given PDF document, the product is the Refinitiv Real-Time Advanced Transformation Server (ATS), but your product in the capture screen is the Refinitiv Real-Time Advanced Distribution Hub (ADH) which is a totally different product.

I highly recommend you contact the ADH support team directly to verify if it is impacted by the Log4j vulnerabilities. You can contact the team via https://my.refinitiv.com/content/mytr/en/productsupport.html website.

adh-contact.png

Update:

If the PUB server is ATS, you can contact the ATS support team to verify if it is impacted by the Log4j vulnerabilities.

ats-support-contact.png



adh-contact.png (16.7 KiB)
ats-support-contact.png (24.4 KiB)
Comment

People who like this

0 Show 0 · Share
10 |1500 characters needed characters left characters exceeded
▼
  • Viewable by all users
  • Viewable by moderators
  • Viewable by moderators and the original poster
  • Advanced visibility
Viewable by all users

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

avatar image
REFINITIV
Answer by Jirapongse · Jan 05 at 04:49 AM

@Henri.GARDON

You may run rmdstestclient to check the source directory message of the PUB service.

The command looks like this:

rmdsTestClient.exe -h <hostname> -p 14002 -S PUB -ct rssl -f rics.txt -X -d 3 -l stdout

If the Vendor element entry of the PUB service is DTS or ATS, the source of the PUB service could be an ATS server.

1641357972736.png


1641357972736.png (86.0 KiB)
Comment
wasin.w

People who like this

1 Show 0 · Share
10 |1500 characters needed characters left characters exceeded
▼
  • Viewable by all users
  • Viewable by moderators
  • Viewable by moderators and the original poster
  • Advanced visibility
Viewable by all users

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

avatar image
Answer by Henri.GARDON · Jan 05 at 02:54 PM

Hi, thank you a lot for the info !

@Jirapongse with the command that you provide I have the answer attached rmdstestclient.txt and the following keywords :

<refreshMsg domainType="RSSL_DMT_SOURCE" streamId="2" containerType="RSSL_DT_MAP" flags="0x168 (RSSL_RFMF_HAS_MSG_KE Y|RSSL_RFMF_SOLICITED|RSSL_RFMF_REFRESH_COMPLETE|RSSL_RFMF_CLEAR_CACHE)" groupId="0" dataState="RSSL_DATA_OK" stream State="RSSL_STREAM_OPEN" code="RSSL_SC_NONE" text="" dataSize="539">


Then :


<elementEntry name="Name" dataType="RSSL_DT_ASCII_STRING" data="PUB"/>


And finally :


<elementEntry name="Vendor" dataType="RSSL_DT_ASCII_STRING" data="Thomson Reuters"/>


So I guess this is not a real ATS ? Do you confirm ?

Thanks,


rmdstestclient.txt (22.9 KiB)
Comment

People who like this

0 Show 0 · Share
10 |1500 characters needed characters left characters exceeded
▼
  • Viewable by all users
  • Viewable by moderators
  • Viewable by moderators and the original poster
  • Advanced visibility
Viewable by all users

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

avatar image
Answer by Henri.GARDON · Jan 12 at 10:52 AM

Confirmed with our Refinitiv contact that we are not impacted,

Thank you for the help !

Comment

People who like this

0 Show 0 · Share
10 |1500 characters needed characters left characters exceeded
▼
  • Viewable by all users
  • Viewable by moderators
  • Viewable by moderators and the original poster
  • Advanced visibility
Viewable by all users

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

Watch this question

Add to watch list
Add to your watch list to receive emailed updates for this question. Too many emails? Change your settings >
12 People are following this question.

Related Questions

ATS Open Webservices XMLConsoleApp connection issues

ATS limit count posting?

Is there any way to setup parallel ATS UI for internal customers through open web services?

TRCC error Error:1002 ipcRead() failure. System errno: (0)

rrdump error

  • Copyright
  • Cookie Policy
  • Privacy Statement
  • Terms of Use
  • Anonymous
  • Sign in
  • Create
  • Ask a question
  • Spaces
  • Alpha
  • App Studio
  • Block Chain
  • Bot Platform
  • Connected Risk APIs
  • DSS
  • Data Fusion
  • Data Model Discovery
  • Datastream
  • Eikon COM
  • Eikon Data APIs
  • Electronic Trading
    • Generic FIX
    • Local Bank Node API
    • Trading API
  • Elektron
    • EMA
    • ETA
    • WebSocket API
  • Intelligent Tagging
  • Legal One
  • Messenger Bot
  • Messenger Side by Side
  • ONESOURCE
    • Indirect Tax
  • Open Calais
  • Open PermID
    • Entity Search
  • Org ID
  • PAM
    • PAM - Logging
  • ProView
  • ProView Internal
  • Product Insight
  • Project Tracking
  • RDMS
  • Refinitiv Data Platform
    • Refinitiv Data Platform Libraries
  • Rose's Space
  • Screening
    • Qual-ID API
    • Screening Deployed
    • Screening Online
    • World-Check One
    • World-Check One Zero Footprint
  • Side by Side Integration API
  • TR Knowledge Graph
  • TREP APIs
    • CAT
    • DACS Station
    • Open DACS
    • RFA
    • UPA
  • TREP Infrastructure
  • TRKD
  • TRTH
  • Thomson One Smart
  • Transactions
    • REDI API
  • Velocity Analytics
  • Wealth Management Web Services
  • Workspace SDK
    • Element Framework
    • Grid
  • World-Check Data File
  • 中文论坛
  • Explore
  • Tags
  • Questions
  • Badges