Adding some additional security considerations. Thanks to Daniel Shahaf for these...

author Daniel Gruno <humbedooh@apache.org>

Tue, 29 May 2012 17:50:39 +0000 (17:50 +0000)

committer Daniel Gruno <humbedooh@apache.org>

Tue, 29 May 2012 17:50:39 +0000 (17:50 +0000)
author Daniel Gruno <humbedooh@apache.org>
Tue, 29 May 2012 17:50:39 +0000 (17:50 +0000)
committer Daniel Gruno <humbedooh@apache.org>
Tue, 29 May 2012 17:50:39 +0000 (17:50 +0000)
diff --git a/docs/manual/mod/mod_log_forensic.xml b/docs/manual/mod/mod_log_forensic.xml

index ab9ac6d69a6cb4fd8359f92eefda04a29a46856f..5a31fb5c695a5ad0337046244e7c30d49cdcedda 100644 (file)
--- a/docs/manual/mod/mod_log_forensic.xml
+++ b/docs/manual/mod/mod_log_forensic.xml
@@ -93,6 +93,10 @@ version 2.1</compatibility>
      document for details on why your security could be compromised
      if the directory where logfiles are stored is writable by
      anyone other than the user that starts the server.</p>
+    <p>The log files may contain sensitive data such as the contents of 
+    <code>Authorization:</code> headers (which can contain passwords), so
+    they should not be readable by anyone except the user that starts the
+    server.</p>
  </section>
  
  <directivesynopsis>
author	Daniel Gruno <humbedooh@apache.org>
	Tue, 29 May 2012 17:50:39 +0000 (17:50 +0000)
committer	Daniel Gruno <humbedooh@apache.org>
	Tue, 29 May 2012 17:50:39 +0000 (17:50 +0000)