|
|
|
|
|
|
by cricalix
2022 days ago
|
|
|
Blind logging of all variables (as the writeup implies) is definitely a nightmare. You can end up with things like passwords, credit card details etc in the logs. If you're running a log concentrator, now they're in the concentrator - and did you remember to set ACLs on who can read from the concentrator (assuming the servers have good ACLs already for reading logs directly from prod servers)? In dev, sure (assuming local disk only). In prod, not in the form documented. |
|
|