Web Server Management: Securing Access to Web Servers | ||
---|---|---|
Prev | Chapter 4. Configuring Apache to support TLS | Next |
We can enable additional logging to see what is actually happening in HTTPS transactions, in addition to the normal Apache request and error logs.
This uses Apache's normal CustomLog directive to record information relevant to HTTPS for each connections.
Date and time
Remote host
SSL Protocol in use
SSL Cipher in use
First line of request
Bytes sent
Note that you will need to make some arrangement to rotate these newly-defined additional log files, probably by extending whatever system you use for existing webserver logs. Otherwise they will grow indefinitely.