Which Directory Service do you use for your network?
None NIS LDAP LDAP + Kerberos Samba Active Directory eDirectory other ( 433 votes ~ 8 comments )
You are not currently logged in. If you do not have a user account then please consider creating one and logging in before you post your comment. This will allow you to track replies to your comment, and take part in the site much more freely.
To add your comment, fill in all the boxes below and then preview it to make sure you're happy with the way that it looks.
This is the comment you were replying to, attached to the article Apache log files - per site log files:
#8 Re: Apache log files - per site log files Posted by xrat (128.130.xx.xx) on Thu 1 Dec 2005 at 12:10 Oops, you are asking about security. Sorry. OK, my users' logs have permissions 0600 in a directory with 0700 permissions, all owned by the users. There are only a few, and, yes, I do trust local users. You are right, with my settings they can do a ln -s /etc/somefile access.log. I would not tolerate this possibility on a bigger host with untrusted users. In my setting, I think I could overcome this issue by checking that log files exist and are regular files prior to starting apache (and when rotating).
ln -s /etc/somefile access.log
In my setting, I think I could overcome this issue by checking that log files exist and are regular files prior to starting apache (and when rotating).
Posting Format:
Inappropriate comments will be removed.
Some help on entry formatting is available
Username:
Password:
[ Advanced Login ]
Register Account
