[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: virtual host

> Im not sure what you mean. If you mean you are running an apache
> virtualhost in a box for another person, and if is secure to permit
> read to those logs to the owner of the virtual host (who, and im
> guessing, happen to have some user in that box) then yes. Im no expert
> but the only problem i could see is a information disclosure security
> problem... but since is its own virtualhost... no problem

Hi and thanks for your reply :-)

I mean users owner of own virtual host can see own logs.

But if there're any security problem by log I prefer deny access to
error.log (and permit only access.log [also for purpose statitics])

now it's clear.

thanks again


Reply to: