I have a client who claims to have just been hacked due to an vulnerability in one of the apps I support and actively develop. I'm not convinced it was directly a result of my application, but I would like to examine their log files and see what I can some up with.
Do PHP and Apache maintain logs which I can check? Are their options I can enable/disable to allow logging, etc?
What are the names of the log files?
Server logs
Moderator: General Moderators
-
alex.barylski
- DevNet Evangelist
- Posts: 6267
- Joined: Tue Dec 21, 2004 5:00 pm
- Location: Winnipeg
- Chris Corbyn
- Breakbeat Nuttzer
- Posts: 13098
- Joined: Wed Mar 24, 2004 7:57 am
- Location: Melbourne, Australia
-
alex.barylski
- DevNet Evangelist
- Posts: 6267
- Joined: Tue Dec 21, 2004 5:00 pm
- Location: Winnipeg
I did Google and got this, mostly PHP error logging functions...I need actual PHP logs 
http://www.google.ca/search?hl=en&q=PHP+logs&meta=
http://www.google.ca/search?hl=en&q=PHP+logs&meta=
- RobertGonzalez
- Site Administrator
- Posts: 14293
- Joined: Tue Sep 09, 2003 6:04 pm
- Location: Fremont, CA, USA