From owner-freebsd-questions  Sat Mar 27  9:35:18 1999
Delivered-To: freebsd-questions@freebsd.org
Received: from aeon.conundrum.com (aeon.conundrum.com [207.34.222.15])
	by hub.freebsd.org (Postfix) with ESMTP id 635D8151FA
	for <freebsd-questions@FreeBSD.ORG>; Sat, 27 Mar 1999 09:35:02 -0800 (PST)
	(envelope-from mattp@conundrum.com)
Received: from smtp.conundrum.com (IDENT:mattp@smtp.conundrum.com [207.34.222.5])
	by aeon.conundrum.com (8.9.2/8.9.2) with ESMTP id MAA05606;
	Sat, 27 Mar 1999 12:34:39 -0500 (EST)
	(envelope-from mattp@conundrum.com)
Date: Sat, 27 Mar 1999 12:34:39 -0500 (EST)
From: Matt of the Long Red Hair <mattp@conundrum.com>
To: John McNamee <jpm@igcinc.com>
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: Save Apache logs into user home directories
In-Reply-To: <199903262212.QAA18112@coffee.veryfast.net>
Message-ID: <Pine.BSF.4.10.9903271231230.5267-100000@aeon.conundrum.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Fri, 26 Mar 1999, John McNamee wrote:

> I want to set up daily log rotation with the output going into a file under a
> user home directory (e.g. /home/foobar/logs/1999-03-26.log).  I understand
> there are some security problems with this, but I'm not fully up to speed on
> the details.  I know that some of the large web hosting companies do their logs
> this way, so I assume there must be a secure way to handle it.  Can anybody
> point me in the right direction?

I can't think of any inherent security problems with the concept -- but you
may have some privacy issues if you implement this improperly.

As long as you make sure that only the log entries that pertain to a
particular user end up in that user's personal log file, and as long as the
log file that gets written to the user's directory is owned and readable only
by that user, you should be fine.

-----------------------------------------------------------------------------
Matthew Pounsett (MP1229)                                 mattp@conundrum.com
PGP Fingerprint =  40 E8 24 BC C1 98 00 F2  56 2F F6 7B 36 34 58 01 
                          http://www.conundrum.com/~mattp
``Chaos often breeds life, when order breeds habit.'' -- Henry Brooks Adams



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message