4.6. Logging

We can enable additional logging to see what is actually happening in HTTPS transactions, in addition to the normal Apache request and error logs.

 CustomLog /var/log/apache2/www-ssl.log \
         "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"

This uses Apache's normal CustomLog directive to record information relevant to HTTPS for each connections.


Date and time


Remote host


SSL Protocol in use


SSL Cipher in use


First line of request


Bytes sent

Note that you will need to make some arrangement to rotate these newly-defined additional log files, probably by extending whatever system you use for existing webserver logs. Otherwise they will grow indefinitely.