Help - Service Audit Settings

Server:/Audit/
Config:/servers/*/Audit/
Setting Explanation Default /
Example Data
Type Access
R,W,A,D
AuditFile The name of the file to which audit messages should be sent. The Audit Log server hook can be used to store audit messages in alternative formats and destinations such as a database server. http.log Text R,W
AuditOutput Any text written to this variable is automatically directly output to the log, after which the variable is emptied. Text A
Enabled Set to TRUE to enable output of auditing information. Yes Integer R,W
Format Format string for the audit log to specify the standard prefix for each line. The rest of the line is formatted according to the type of audit record. Any variable can be inserted into the log.
Example: "#Server/LocalTime #Server/Audit/Message"
Restriction: only the common NCSA/CERN error log format is currently supported. NCSA Text R,W
FrequencyBackup Time in seconds between automatic backups of the audit log. Set to 0 to disable. Statistics are automatically output prior to the backup.
Note: this setting is currently ignored. 0 Integer R,W
FrequencyStats Time in seconds between outputting statistical records. Set to 0 to disable. The stats are reset after each such interval.
Note: this setting is currently ignored. 0 Integer R,W
HostCheck Whether the server should perform reverse domain name server (DNS) lookup to check the host name identity of the remote client. The host name will be displayed in the audit log instead of the IP address.
If you don't need this optional level of audit logging, turn it off because it halves performance. No Integer R,W
IdentityCheck Whether the server should perform user identity checking on every connection. This will only work if the client site is running an IDENT daemon. It is also not reliable if clients are connecting via a proxy server.
If you don't need this optional level of user tracking, turn it off because it halves performance. No Integer R,W
LogAbort Set to TRUE to output an auditing record for every server abort.
Note: this setting is currently ignored. Yes Integer R,W
LogConnectionCompletion Set to TRUE to output an auditing record when a request completes.
Note: this setting is currently ignored. No Integer R,W
LogErrors Set to TRUE to output an auditing record for every error encountered. This is currently always enabled. Yes Integer R,W
LogRequest Set to TRUE to output an auditing record for every request received. This is currently always set to the same value as the overall auditing enabled setting. Yes Integer R,W
LogRequestBody Set to TRUE to include the body of the request in the log. Only effective if "LogRequest" is also set. The output is limited to the first line of the request body. This is currently always enabled. No Integer R,W
LogRequestCompletion Set to TRUE to output an auditing record when a request completes.
Note: this setting is currently ignored. No Integer R,W
LogServer Set to TRUE to output an auditing record whenever a server starts and stops.
Note: this setting is currently ignored. No Integer R,W
LogTimeouts Set to TRUE to output an auditing record for every timeout exceeded. This is currently always enabled. No Integer R,W
LogonAnonymous Set to "no" to force user authentication, "yes" to allow the user name "anonymous" regardless of password, and "email" to allow the user name "anonymous" provided the password is a valid email address. eMail Integer R,W
LogonAttempts The number of user logon attempts before the connection is closed. Each logon attempt escalates a time delay to make it difficult for automated password cracking programs to gain access. 3 Integer R,W
LogonRealm The name of the user database realm that is used to authenticate logons for this service. The user database must already exist. Only applicable for FTP and POP3 services which require an up-front logon, whereas HTTP authenticates separately for each request, using the user database realm specified for the resource that is to be accessed. FTP Text R,W
LogReferer Set to YES/TRUE to record the URL from which the user was directed to your site. This enables you to track which other sites have references to your site. No Integer R,W
LogUserAgent Set to YES/TRUE to record the name of the client's browser which he/she is using to access your site. No Integer R,W
RefererFile The name of the file to which referer log entries should be sent. http.ref Text R,W
UserAgentFile The name of the file to which user-agent log entries should be sent. http.ref Text R,W

Server:/Audit/ Config:/servers/*/Audit/
Setting	Explanation	Default / Example	Data Type	Access R,W,A,D
AuditFile	The name of the file to which audit messages should be sent. The Audit Log server hook can be used to store audit messages in alternative formats and destinations such as a database server.	http.log	Text	R,W
AuditOutput	Any text written to this variable is automatically directly output to the log, after which the variable is emptied.		Text	A
Enabled	Set to TRUE to enable output of auditing information.	Yes	Integer	R,W
Format	Format string for the audit log to specify the standard prefix for each line. The rest of the line is formatted according to the type of audit record. Any variable can be inserted into the log. Example: "#Server/LocalTime #Server/Audit/Message" Restriction: only the common NCSA/CERN error log format is currently supported.	NCSA	Text	R,W
FrequencyBackup	Time in seconds between automatic backups of the audit log. Set to 0 to disable. Statistics are automatically output prior to the backup. Note: this setting is currently ignored.	0	Integer	R,W
FrequencyStats	Time in seconds between outputting statistical records. Set to 0 to disable. The stats are reset after each such interval. Note: this setting is currently ignored.	0	Integer	R,W
HostCheck	Whether the server should perform reverse domain name server (DNS) lookup to check the host name identity of the remote client. The host name will be displayed in the audit log instead of the IP address. If you don't need this optional level of audit logging, turn it off because it halves performance.	No	Integer	R,W
IdentityCheck	Whether the server should perform user identity checking on every connection. This will only work if the client site is running an IDENT daemon. It is also not reliable if clients are connecting via a proxy server. If you don't need this optional level of user tracking, turn it off because it halves performance.	No	Integer	R,W
LogAbort	Set to TRUE to output an auditing record for every server abort. Note: this setting is currently ignored.	Yes	Integer	R,W
LogConnectionCompletion	Set to TRUE to output an auditing record when a request completes. Note: this setting is currently ignored.	No	Integer	R,W
LogErrors	Set to TRUE to output an auditing record for every error encountered. This is currently always enabled.	Yes	Integer	R,W
LogRequest	Set to TRUE to output an auditing record for every request received. This is currently always set to the same value as the overall auditing enabled setting.	Yes	Integer	R,W
LogRequestBody	Set to TRUE to include the body of the request in the log. Only effective if "LogRequest" is also set. The output is limited to the first line of the request body. This is currently always enabled.	No	Integer	R,W
LogRequestCompletion	Set to TRUE to output an auditing record when a request completes. Note: this setting is currently ignored.	No	Integer	R,W
LogServer	Set to TRUE to output an auditing record whenever a server starts and stops. Note: this setting is currently ignored.	No	Integer	R,W
LogTimeouts	Set to TRUE to output an auditing record for every timeout exceeded. This is currently always enabled.	No	Integer	R,W
LogonAnonymous	Set to "no" to force user authentication, "yes" to allow the user name "anonymous" regardless of password, and "email" to allow the user name "anonymous" provided the password is a valid email address.	eMail	Integer	R,W
LogonAttempts	The number of user logon attempts before the connection is closed. Each logon attempt escalates a time delay to make it difficult for automated password cracking programs to gain access.	3	Integer	R,W
LogonRealm	The name of the user database realm that is used to authenticate logons for this service. The user database must already exist. Only applicable for FTP and POP3 services which require an up-front logon, whereas HTTP authenticates separately for each request, using the user database realm specified for the resource that is to be accessed.	FTP	Text	R,W
LogReferer	Set to YES/TRUE to record the URL from which the user was directed to your site. This enables you to track which other sites have references to your site.	No	Integer	R,W
LogUserAgent	Set to YES/TRUE to record the name of the client's browser which he/she is using to access your site.	No	Integer	R,W
RefererFile	The name of the file to which referer log entries should be sent.	http.ref	Text	R,W
UserAgentFile	The name of the file to which user-agent log entries should be sent.	http.ref	Text	R,W