-
Notifications
You must be signed in to change notification settings - Fork 32
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
move Rails logs to proper place #6
Conversation
Haven't tested this as thoroughly as I would have liked, but it should be fine. |
It works, but I log permissions aren't always perfect - turnkeylinux/tracker#235. |
It's usually not ideal for a webapp to have access to its own logs because if a security breach allows the attacker to gain www-data privileges he can then alter them. If we use syslog then the attacker needs to escalate to root privileges. OTOH, the right configuration is rarely perfect, it just makes the best trade-offs for the usage scenarios we have in mind. It looks like it is possible to configuration Rails to use syslog but if I'm not mistaken this has to be done at the application (rather than the system level) level, so perhaps it isn't a good idea to rely on that. |
Good point! Could require Rails appliance developers to use syslog? It's quite straightforward. |
I wouldn't force anyone to make a change to their app or to even On 27/06/14 12:24, wvengen wrote:
|
I like your approach. |
Is there anything holding back this pull request? I'd be happy to add a line to the page about Rails on logging when merged (though I can't seem to find one right now). |
move Rails logs to proper place
Merged this finally, sorry for letting this slip through the cracks. |
fix for something that came up in turnkeylinux/tracker#216